Vulnerabilities > Librenms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-29711 | Cross-site Scripting vulnerability in Librenms 22.3.0 LibreNMS v22.3.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Table/GraylogController.php. | 4.3 |
| 2022-06-02 | CVE-2022-29712 | Command Injection vulnerability in Librenms 22.3.0 LibreNMS v22.3.0 was discovered to contain multiple command injection vulnerabilities via the service_ip, hostname, and service_param parameters. | 7.5 |
| 2022-02-27 | CVE-2022-0772 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.2.2. | 3.5 |
| 2022-02-15 | CVE-2022-0589 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.1.0. | 3.5 |
| 2022-02-15 | CVE-2022-0587 | Improper Authorization vulnerability in Librenms Improper Authorization in Packagist librenms/librenms prior to 22.2.0. | 4.0 |
| 2022-02-15 | CVE-2022-0588 | Missing Authorization vulnerability in Librenms Missing Authorization in Packagist librenms/librenms prior to 22.2.0. | 6.5 |
| 2022-02-14 | CVE-2022-0580 | Incorrect Authorization vulnerability in Librenms Incorrect Authorization in Packagist librenms/librenms prior to 22.2.0. | 8.8 |
| 2022-02-14 | CVE-2022-0575 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.2.0. | 3.5 |
| 2022-02-14 | CVE-2022-0576 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Generic in Packagist librenms/librenms prior to 22.1.0. | 4.3 |
| 2021-12-03 | CVE-2021-44278 | Path Traversal vulnerability in Librenms 21.11.0 Librenms 21.11.0 is affected by a path manipulation vulnerability in includes/html/pages/device/showconfig.inc.php. | 7.5 |