Lucene search
K

4 matches found

OSV
OSV
added 2024/11/15 3:26 p.m.15 views

CVE-2024-49759 LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/edituser.inc.php

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting XSS vulnerability in the "Manage User Access" page allows authenticated users to inject arbitrary JavaScript through the "billname" parameter when creating a new bill. This vulnerability can...

4.8CVSS5.4AI score0.00402EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2024/11/15 3:25 p.m.21 views

Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/edituser.inc.php

Summary A Stored Cross-Site Scripting XSS vulnerability in the "Manage User Access" page allows authenticated users to inject arbitrary JavaScript through the "billname" parameter when creating a new bill. This vulnerability can lead to the execution of malicious code when visiting the "Bill...

5.4CVSS5.3AI score0.00402EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.4 views

PT-2024-33669 · Librenms · Librenms

Name of the Vulnerable Software and Affected Versions: LibreNMS versions prior to 24.10.0 Description: A Stored Cross-Site Scripting XSS vulnerability in the "Manage User Access" page allows authenticated users to inject arbitrary JavaScript through the bill name parameter when creating a new bil...

5.4CVSS5.5AI score0.00402EPSS
Exploits1References10
CNNVD
CNNVD
added 2024/11/15 12:0 a.m.5 views

LibreNMS 跨站脚本漏洞

LibreNMS is an open source network monitoring system based on PHP and MySQL from the LibreNMS community. The system features customizable alerts, auto-discovery of network environments, and automatic updates. LibreNMS suffers from a cross-site scripting vulnerability that stems from a stored...

5.4CVSS5.8AI score0.00402EPSS
Exploits1References2
Rows per page
Query Builder