Vulnerabilities > Librenms > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-27 | CVE-2022-0772 | Cross-site Scripting vulnerability in Librenms Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.2.2. | 4.8 |
| 2022-02-15 | CVE-2022-0589 | Unspecified vulnerability in Librenms Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.1.0. | 5.4 |
| 2022-02-15 | CVE-2022-0587 | Unspecified vulnerability in Librenms Improper Authorization in Packagist librenms/librenms prior to 22.2.0. | 6.5 |
| 2022-02-15 | CVE-2022-0588 | Unspecified vulnerability in Librenms Missing Authorization in Packagist librenms/librenms prior to 22.2.0. | 6.5 |
| 2022-02-14 | CVE-2022-0575 | Unspecified vulnerability in Librenms Cross-site Scripting (XSS) - Stored in Packagist librenms/librenms prior to 22.2.0. | 5.4 |
| 2022-02-14 | CVE-2022-0576 | Unspecified vulnerability in Librenms Cross-site Scripting (XSS) - Generic in Packagist librenms/librenms prior to 22.1.0. | 6.1 |
| 2021-12-01 | CVE-2021-44277 | Cross-site Scripting vulnerability in Librenms 21.11.0 Librenms 21.11.0 is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/common/alert-log.inc.php. | 6.1 |
| 2021-12-01 | CVE-2021-44279 | Cross-site Scripting vulnerability in Librenms 21.11.0 Librenms 21.11.0 is affected by a Cross Site Scripting (XSS) vulnerability in includes/html/forms/poller-groups.inc.php. | 6.1 |
| 2021-11-03 | CVE-2021-43324 | Cross-site Scripting vulnerability in Librenms LibreNMS through 21.10.2 allows XSS via a widget title. | 6.1 |
| 2021-09-08 | CVE-2021-31274 | Cross-site Scripting vulnerability in Librenms In LibreNMS < 21.3.0, a stored XSS vulnerability was identified in the API Access page due to insufficient sanitization of the $api->description variable. | 5.4 |