CVE-2022-36746

Identifiers

GHSA-325v-g5vx-whxc, CVE-2022-36746

Package Slug

packagist/librenms

Vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Description

LibreNMS v22.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component oxidized-cfg-check.inc.php.

Affected Versions

All versions before 22.6.0

Solution

Upgrade to version 22.6.0 or above.

Last Modified

2022-09-19