Количество 2
Количество 2
CVE-2025-62365
LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Prior to 25.7.0, there is a reflected-XSS in `report_this` function in `librenms/includes/functions.php`. The `report_this` function had improper filtering (`htmlentities` function was incorrectly use in a href environment), which caused the `project_issues` parameter to trigger an XSS vulnerability. This vulnerability is fixed in 25.7.0.
GHSA-86rg-8hc8-v82p
LibreNMS is vulnerable to Reflected-XSS in `report_this` function
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-62365 LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. Prior to 25.7.0, there is a reflected-XSS in `report_this` function in `librenms/includes/functions.php`. The `report_this` function had improper filtering (`htmlentities` function was incorrectly use in a href environment), which caused the `project_issues` parameter to trigger an XSS vulnerability. This vulnerability is fixed in 25.7.0. | CVSS3: 6.1 | 0% Низкий | 4 месяца назад |
| GHSA-86rg-8hc8-v82p LibreNMS is vulnerable to Reflected-XSS in `report_this` function | 0% Низкий | 4 месяца назад |
Уязвимостей на страницу