Page 8 of 59 results (0.002 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

Cross-site Scripting (XSS) - Generic in Packagist librenms/librenms prior to 22.1.0. Una vulnerabilidad de tipo Cross-site Scripting (XSS) - Genérico en Packagist librenms/librenms versiones anteriores a 22.1.0 • https://github.com/librenms/librenms/commit/135717a9a05c5bf8921f1389cbb469dcbf300bfd https://huntr.dev/bounties/114ba055-a2f0-4db9-aafb-95df944ba177 https://notes.netbytesec.com/2022/02/multiple-vulnerabilities-in-librenms.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php. Librenms versión 21.11.0 está afectado por una vulnerabilidad de manipulación de ruta en el archivo includes/html/pages/device/showconfig.inc.php • https://github.com/librenms/librenms/pull/13554 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

Librenms 21.11.0 is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/common/alert-log.inc.php. Librenms versión 21.11.0 está afectado por una vulnerabilidad de Cross Site Scripting (XSS) en includes/html/common/alert-log.inc.php • https://github.com/librenms/librenms/pull/13554 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1

Librenms 21.11.0 is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/forms/poller-groups.inc.php. Librenms 21.11.0 está afectado por una vulnerabilidad de Cross Site Scripting (XSS) en includes/html/forms/poller-groups.inc.php • https://github.com/librenms/librenms/pull/13554 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

LibreNMS through 21.10.2 allows XSS via a widget title. LibreNMS versiones hasta 21.10.2, permite un ataque de tipo XSS por medio de un título de widget • https://github.com/librenms/librenms/commit/99d2462b80435b91a35236639b909eebee432126 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •