Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 8:4 a.m.16 views

CVE-2024-51497

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting XSS vulnerability in the "Custom OID" tab of a device allows authenticated users to inject arbitrary JavaScript through the "unit" parameter when creating a new OID. This vulnerability can le...

5.4CVSS5.1AI score0.00396EPSS
Exploits1
vulnrichment
vulnrichment
added 2024/11/15 3:46 p.m.15 views

CVE-2024-51497 LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.php

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting XSS vulnerability in the "Custom OID" tab of a device allows authenticated users to inject arbitrary JavaScript through the "unit" parameter when creating a new OID. This vulnerability can le...

4.8CVSS5.6AI score0.00396EPSS
Exploits1References2
osv
osv
added 2024/11/15 3:46 p.m.30 views

CVE-2024-51497 LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/print-customoid.php

LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting XSS vulnerability in the "Custom OID" tab of a device allows authenticated users to inject arbitrary JavaScript through the "unit" parameter when creating a new OID. This vulnerability can le...

4.8CVSS5.4AI score0.00396EPSS
Exploits1References4
cve
cve
added 2024/11/15 3:46 p.m.55 views

CVE-2024-51497

LibreNMS is affected by a Stored XSS in the Custom OID tab, where an authenticated user can inject JavaScript via the unit parameter when creating a new OID. The vulnerability is due to improper sanitization in librenms/includes/html/print-customoid.php and is associated with the stored XSS paylo...

5.4CVSS4.8AI score0.00396EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder