Lucene search
+L

CVE-2019-10669

🗓️ 09 Sep 2019 12:46:12Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 98 Views🌐 WEB

An issue in LibreNMS through 1.47 allows command injection via user-supplied parameters in collectd.inc.php

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
0day.today
LibreNMS Collectd Command Injection Exploit
9 Sep 201900:00
zdt
Circl
CVE-2019-10669
6 Sep 201917:10
circl
CNVD
LibreNMS Command Injection Vulnerability
9 Sep 201900:00
cnvd
Cvelist
CVE-2019-10669
9 Sep 201912:46
cvelist
Exploit DB
LibreNMS - Collectd Command Injection (Metasploit)
10 Sep 201900:00
exploitdb
Metasploit
LibreNMS Collectd Command Injection
12 Aug 201920:22
metasploit
NVD
CVE-2019-10669
9 Sep 201913:15
nvd
Packet Storm
LibreNMS Collectd Command Injection
6 Sep 201900:00
packetstorm
Prion
Command injection
9 Sep 201913:15
prion
RedhatCVE
CVE-2019-10669
22 May 202504:54
redhatcve
Rows per page
NVD
Node
librenmslibrenmsRange1.47
ParameterPositionPathDescriptionCWE
fromquery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
toquery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
devicequery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
typequery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
c_pluginquery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
c_typequery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
c_plugin_instancequery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78
c_type_instancequery param/graph.phpCommand injection via the from parameter in graph.php used for LibreNMS Collectd graphs (backticks allow injection).CWE-78

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 02:11Current
7.1High risk
Vulners AI Score7.1
CVSS 26.5
CVSS 3.17.2
EPSS0.80662
98