3 matches found
CVE-2023-48295 Cross-site Scripting at Device groups Deletion feature in LibreNMS
LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. Affected versions are subject to a cross site scripting XSS vulnerability in the device group popups. This issue has been addressed in commit...
CVE-2023-48295
LibreNMS CVE-2023-48295 is an XSS vulnerability in device group popups caused by unsanitized device group names in DeviceGroupController.php (L173). Affected: LibreNMS with vulnerable device-group handling prior to 23.11.0. The issue has been fixed in commit faf66035ea and included in release 23....
CVE-2023-48295 Cross-site Scripting at Device groups Deletion feature in LibreNMS
LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring which includes support for a wide range of network hardware and operating systems. Affected versions are subject to a cross site scripting XSS vulnerability in the device group popups. This issue has been addressed in commit...