Количество 3
Количество 3
CVE-2024-47525
LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Rules" feature allows authenticated users to inject arbitrary JavaScript through the "Title" field. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions. This vulnerability is fixed in 24.9.0.
GHSA-j2j9-7pr6-xqwv
LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Rules" feature
BDU:2024-09475
Уязвимость функции Alert Rules системы сетевого мониторинга LibreNMS, позволяющая нарушителю проводить межсайтовые сценарные атаки
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-47525 LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A Stored Cross-Site Scripting (XSS) vulnerability in the "Alert Rules" feature allows authenticated users to inject arbitrary JavaScript through the "Title" field. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions. This vulnerability is fixed in 24.9.0. | CVSS3: 7.5 | 6% Низкий | больше 1 года назад |
| GHSA-j2j9-7pr6-xqwv LibreNMS has Stored Cross-site Scripting vulnerability in "Alert Rules" feature | CVSS3: 7.5 | 6% Низкий | больше 1 года назад |
 | BDU:2024-09475 Уязвимость функции Alert Rules системы сетевого мониторинга LibreNMS, позволяющая нарушителю проводить межсайтовые сценарные атаки | CVSS3: 7.5 | 6% Низкий | больше 1 года назад |
Уязвимостей на страницу