CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/02/20 1:25 a.m.•2 views

CVE-2026-26989

4.3CVSS5.6AI score0.00003EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2026/02/20 1:17 a.m.•1 views

CVE-2026-26988 LibreNMS: SQL Injection in ajax_table.php spreads through a covert data stream

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below contain an SQL Injection vulnerability in the ajaxtable.php endpoint. The application fails to properly sanitize or parameterize user input when processing IPv6 address searches. Specifically,...

9.3CVSS6.1AI score0.00001EPSS

Exploits2References3

OSV•added 2026/02/20 1:17 a.m.•2 views

CVE-2026-26988 LibreNMS: SQL Injection in ajax_table.php spreads through a covert data stream

9.3CVSS6.2AI score0.00001EPSS

Exploits2References5

CVE•added 2026/02/20 1:17 a.m.•18 views

CVE-2026-26988

CVE-2026-26988 affects LibreNMS (versions ≤ 25.12.0) via an SQL Injection in the IPv6 address search path of the ajax_table.php endpoint. The root cause is that the address parameter is split into an address and a prefix, and the prefix is directly concatenated into the SQL query without validati...

9.3CVSS6.1AI score0.00001EPSS

Exploits2References3Affected Software1

Cvelist•added 2026/02/20 1:17 a.m.•21 views

CVE-2026-26988 LibreNMS: SQL Injection in ajax_table.php spreads through a covert data stream

9.3CVSS0.00001EPSS

Exploits2References3

Vulnrichment•added 2026/02/20 1:11 a.m.•1 views

CVE-2026-26987 LibreNMS affected by reflected XSS via email field

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below are vulnerable to Reflected XSS attacks via email field. This issue has been fixed in version 26.2.0...

OSV•added 2026/02/20 1:11 a.m.•1 views

CVE-2026-26987 LibreNMS affected by reflected XSS via email field

ATTACKERKB•added 2026/02/20 1:11 a.m.•2 views

Exploits1References6

CVE-2026-26987

Exploits1References5Affected Software1

CVE•added 2026/02/20 1:11 a.m.•6 views

CVE-2026-26987

CVE-2026-26987 affects LibreNMS up to version 25.12.0 with a Reflected XSS vulnerability in the email field of alerting settings. The issue is fixed in version 26.2.0. Multiple sources (NVD, Red Hat, OSV, GHSA) corroborate that user-input in the email field can be reflected, potentially allowing ...

6.1CVSS5.4AI score0.00001EPSS

Exploits1References4Affected Software1

Cvelist•added 2026/02/20 1:11 a.m.•21 views

CVE-2026-26987 LibreNMS affected by reflected XSS via email field

5.3CVSS0.00001EPSS

8.8CVSS5.9AI score0.00003EPSS

LibreNMS SQL注入漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 25.12.0 have a SQL injection vulnerability, which stems from...

Exploits1References3

5.1CVSS5.7AI score0.00004EPSS

LibreNMS 跨站脚本漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 26.1.1 contained a cross-site scripting vulnerability. This...

Positive Technologies•added 2026/02/20 12:0 a.m.•4 views

PT-2026-20981

Exploits1References5

9.3CVSS5.9AI score0.00001EPSS

LibreNMS SQL注入漏洞

Exploits2References3

CNNVD•added 2026/02/20 12:0 a.m.•4 views

LibreNMS 跨站脚本漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 25.12.0 contained a cross-site scripting vulnerability. This...

6.1CVSS5.7AI score0.00001EPSS

4.8CVSS5.7AI score0.00003EPSS

LibreNMS 跨站脚本漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 25.12.0 contained a cross-site scripting vulnerability. This...

CNNVD•added 2026/02/20 12:0 a.m.•4 views

LibreNMS 跨站脚本漏洞

LibreNMS is an open-source network monitoring system developed by the LibreNMS community, based on PHP and MySQL. This system features custom alerts, automatic discovery of networks, and automatic updates. Versions of LibreNMS prior to 26.1.1 contained a cross-site scripting vulnerability. This...

5.1CVSS5.7AI score0.00004EPSS