GHSA-7289-CHWJ-7H86 Path traversal in librenms/librenms

Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php...

Librenms path traversal vulnerability

Librenms is a Librenms community of open source network monitoring system based on PHP and MySQL. The system features custom alerts, automatic discovery of network environments and automatic updates.Librenms suffers from a path traversal vulnerability that stems from Librenms 21.11.0 being affect...

Path Traversal

librenms/librenms is vulnerable to path traversal. The library does not properly encode the $currentconfig attribute in showconfig.inc.php, allowing an attacker to access files outside the expected directory through the $url field...

Path traversal

Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php...

CVE-2021-44278

Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php...

CVE-2021-44278

Librenms 21.11.0 is affected by a path traversal vulnerability in includes/html/pages/device/showconfig.inc.php, enabling manipulation of the requested path to access files outside the intended directory. Multiple connected advisories (GHSA-7289-CHWJ-7H86, OSV:GHSA-7289-CHWJ-7H86, CNVD/CNNVD, Ver...