3 matches found
CVE-2024-53457
CVE-2024-53457 details a stored XSS in LibreNMS (Device Settings, Display Name) for versions 24.9.0–24.10.0. The underlying issue enables arbitrary web scripts/HTML execution via crafted payloads. Public sources corroborate the affected product and version range and identify the remediation: upgr...
CVE-2024-53457
A stored cross-site scripting XSS vulnerability in the Device Settings section of LibreNMS v24.9.0 to v24.10.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Display Name parameter...
CVE-2024-53457
A stored cross-site scripting XSS vulnerability in the Device Settings section of LibreNMS v24.9.0 to v24.10.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Display Name parameter...