2 matches found
CVE-2019-12464
An issue was discovered in LibreNMS 1.50.1. An authenticated user can perform a directory traversal attack against the /pdf.php file with a partial filename in the report parameter, to cause local file inclusion resulting in code execution...
CVE-2019-12464
LibreNMS 1.50.1 is affected by CVE-2019-12464. An authenticated user can perform a directory traversal attack against the /pdf.php endpoint using a partial filename in the report parameter, resulting in local file inclusion and code execution. The provided connected sources confirm the vulnerabil...