librenms/librenms

unspecified

OTHER 25 CVEs

CVE-2022-4069

Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0.

LOW Nov 20, 2022

CVE-2022-3561

Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0.

MEDIUM Nov 20, 2022

CVE-2022-3525

Deserialization of Untrusted Data in GitHub repository librenms/librenms prior to 22.10.0.

CRITICAL Nov 20, 2022

CVE-2022-3516

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0.

MEDIUM Nov 20, 2022

CVE-2022-3562

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0.

MEDIUM Nov 20, 2022

CVE-2022-4070

Insufficient Session Expiration in GitHub repository librenms/librenms prior to 22.10.0.

LOW Nov 20, 2022

CVE-2022-4067

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0.

LOW Nov 20, 2022

CVE-2022-4068

A user is able to enable their own account if it was disabled by an admin while the user still holds a valid session. Moreover, the username is not properly sanitized in the admin user overview. This enables an XSS attack that enables an attacker with a low privilege user to execute arbitrary JavaScript in the context of an admin's account.

HIGH Nov 20, 2022

CVE-2022-3231

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.9.0.

MEDIUM Sep 17, 2022

CVE-2022-0589

Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.1.0.

MEDIUM Feb 15, 2022