Vulnerabilities > Librenms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-20 | CVE-2022-4069 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0. | 4.8 |
| 2022-11-20 | CVE-2022-4070 | Insufficient Session Expiration vulnerability in Librenms Insufficient Session Expiration in GitHub repository librenms/librenms prior to 22.10.0. | 9.8 |
| 2022-09-17 | CVE-2022-3231 | Unspecified vulnerability in Librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.9.0. | 5.4 |
| 2022-08-30 | CVE-2022-36745 | Cross-site Scripting vulnerability in Librenms 22.6.0 LibreNMS v22.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component print-customoid.php. | 6.1 |
| 2022-08-30 | CVE-2022-36746 | Cross-site Scripting vulnerability in Librenms 22.6.0 LibreNMS v22.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component oxidized-cfg-check.inc.php. | 6.1 |
| 2022-06-02 | CVE-2022-29711 | Cross-site Scripting vulnerability in Librenms 22.3.0 LibreNMS v22.3.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Table/GraylogController.php. | 6.1 |
| 2022-06-02 | CVE-2022-29712 | Command Injection vulnerability in Librenms 22.3.0 LibreNMS v22.3.0 was discovered to contain multiple command injection vulnerabilities via the service_ip, hostname, and service_param parameters. | 9.8 |
| 2022-02-27 | CVE-2022-0772 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.2.2. | 4.8 |
| 2022-02-15 | CVE-2022-0589 | Unspecified vulnerability in Librenms Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.1.0. | 5.4 |
| 2022-02-15 | CVE-2022-0587 | Unspecified vulnerability in Librenms Improper Authorization in Packagist librenms/librenms prior to 22.2.0. | 6.5 |