5 matches found
CVE-2025-23201
librenms is a community-based GPL-licensed network monitoring system. Affected versions are subject to Cross-site Scripting XSS on the parameters:/addhost - param: community. Librenms versions up to 24.10.1 allow remote attackers to inject malicious scripts. When a user views or interacts with th...
CVE-2025-23201
librenms is a community-based GPL-licensed network monitoring system. Affected versions are subject to Cross-site Scripting XSS on the parameters:/addhost - param: community. Librenms versions up to 24.10.1 allow remote attackers to inject malicious scripts. When a user views or interacts with th...
CVE-2025-23201 Reflected Cross-site Scripting on error alert in librenms
librenms is a community-based GPL-licensed network monitoring system. Affected versions are subject to Cross-site Scripting XSS on the parameters:/addhost - param: community. Librenms versions up to 24.10.1 allow remote attackers to inject malicious scripts. When a user views or interacts with th...
CVE-2025-23201
CVE-2025-23201 affects LibreNMS. The issue is a Cross-site Scripting (XSS) in the /addhost endpoint via the community parameter, impacting Librenms versions up to 24.10.1. The root cause is improper handling/escaping of user-supplied input in this parameter, enabling attackers to inject scripts t...
CVE-2025-23201
creationtimestamp| type| source ---|---|--- 2025-01-16 15:18:59+00:00| published-proof-of-concept| https://github.com/librenms/librenms/security/advisories/GHSA-g84x-g96g-rcjc 2025-01-16 22:56:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2077 2025-01-16...