Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1187 matches found

EUVD
EUVDadded 2026/04/13 12:31 p.m.0 views

EUVD-2026-21908

LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server...

8.5CVSS6.4AI score0.00008EPSS
Exploits1References3
Github Security Blog
Github Security Blogadded 2026/04/13 12:31 p.m.2 views

Duplicate Advisory: LibreNMS affected by an authenticated Cross-site Scripting vulnerability on the showconfig page

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-5gm9-622f-qcg5. This link is maintained to preserve external references. Original Description LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig...

4.8CVSS5.8AI score0.00004EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2026/04/13 12:31 p.m.0 views

GHSA-RP7W-624X-95QV Duplicate Advisory: LibreNMS affected by an authenticated Cross-site Scripting vulnerability on the showconfig page

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-5gm9-622f-qcg5. This link is maintained to preserve external references. Original Description LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig...

4.8CVSS5.8AI score0.00004EPSS
Exploits1References3
Github Security Blog
Github Security Blogadded 2026/04/13 12:31 p.m.3 views

Duplicate Advisory: LibreNMS is Vulnerable to Remote Code Execution by Arbitrary File Write

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-pr3g-phhr-h8fh. This link is maintained to preserve external references. Original Description LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing...

8.5CVSS6.4AI score0.00008EPSS
Exploits1References4Affected Software1
Snyk
Snykadded 2026/04/13 12:10 p.m.0 views

Cross-site Scripting (XSS)

Overview librenms/librenms is a fully featured network monitoring system that provides a wealth of features and device support. Affected versions of this package are vulnerable to Cross-site Scripting XSS in the showconfig page when administrative privileges are present. An attacker can execute...

4.8CVSS5.8AI score0.00004EPSS
Exploits1References2
NVD
NVDadded 2026/04/13 11:16 a.m.0 views

CVE-2026-6204

LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server...

8.5CVSS0.00008EPSS
Exploits1References2
NVD
NVDadded 2026/04/13 11:16 a.m.0 views

CVE-2026-2728

LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig page. Successful exploitation requires administrative privileges. Exploitation could result in XSS attacks being performed against other users with access to the page...

4.8CVSS0.00004EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/04/13 10:56 a.m.26 views

CVE-2026-6204

LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server...

8.5CVSS0.00008EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/04/13 10:56 a.m.0 views

CVE-2026-6204

LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server...

8.5CVSS6.4AI score0.00008EPSS
Exploits1References2
CVE
CVEadded 2026/04/13 10:56 a.m.10 views

CVE-2026-6204

LibreNMS is affected (versions before 26.3.0) by an authenticated remote code execution vulnerability via the Binary Locations config and Netcommand feature. Exploitation requires administrative privileges and could compromise the underlying web server. Affected component is the software’s web in...

8.5CVSS6.4AI score0.00008EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/13 10:56 a.m.0 views

CVE-2026-6204

LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server...

8.5CVSS6.4AI score0.00008EPSS
Exploits1References2
CVE
CVEadded 2026/04/13 10:39 a.m.2 views

CVE-2026-2728

CVE-2026-2728 affects LibreNMS before 26.3.0. The issue is an authenticated Cross-site Scripting (XSS) vulnerability on the showconfig page, exploitable by users with administrative privileges. Successful exploitation could trigger XSS attacks against other users with access to the page. CVSS met...

4.8CVSS5.8AI score0.00004EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/13 10:39 a.m.0 views

CVE-2026-2728

LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig page. Successful exploitation requires administrative privileges. Exploitation could result in XSS attacks being performed against other users with access to the page...

4.6CVSS5.8AI score0.00004EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/04/13 10:39 a.m.28 views

CVE-2026-2728

LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig page. Successful exploitation requires administrative privileges. Exploitation could result in XSS attacks being performed against other users with access to the page...

4.6CVSS0.00004EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/04/13 10:39 a.m.1 views

CVE-2026-2728

LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig page. Successful exploitation requires administrative privileges. Exploitation could result in XSS attacks being performed against other users with access to the page...

4.6CVSS5.8AI score0.00004EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2026/04/13 12:0 a.m.0 views

PT-2026-32331

LibreNMS versions before 26.3.0 are affected by an authenticated remote code execution vulnerability by abusing the Binary Locations config and the Netcommand feature. Successful exploitation requires administrative privileges. Exploitation could result in compromise of the underlying web server...

8.5CVSS6.4AI score0.00008EPSS
Exploits1References3
CNNVD
CNNVDadded 2026/04/13 12:0 a.m.4 views

LibreNMS 安全漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 26.3.0 contained security vulnerabilities, which were caused ...

8.5CVSS6.2AI score0.00008EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2026/04/13 12:0 a.m.0 views

PT-2026-32330

Name of the Vulnerable Software and Affected Versions LibreNMS versions prior to 26.3.0 Description An authenticated Cross-site Scripting issue exists on the 'showconfig' page. An attacker with administrative privileges can execute scripts that target other users who access the same page...

4.8CVSS5.9AI score0.00004EPSS
Exploits1References9
CNNVD
CNNVDadded 2026/04/13 12:0 a.m.2 views

LibreNMS 安全漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 26.3.0 contained security vulnerabilities; these...

4.8CVSS5.7AI score0.00004EPSS
Exploits1References1
Github Security Blog
Github Security Blogadded 2026/03/26 6:4 p.m.4 views

LibreNMS is Vulnerable to Remote Code Execution by Arbitrary File Write

Summary A vulnerability has been identified that allows an authenticated administrator to execute arbitrary code on the host server. By modifying the binary path settings for built-in network tools and bypassing an input filter, an attacker with administrative privileges can download and execute...

8.5CVSS6.3AI score0.00008EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder