CVE-2022-3561: Cross-site Scripting in librenms/librenms

November 20, 2022 (updated April 30, 2025)

Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0.

References

github.com/advisories/GHSA-264w-gw9g-fhgj
github.com/librenms/librenms/commit/d86cbcd96d684e4de8dfa50b4490e4e02782d242
huntr.com/bounties/7389e6eb-4bce-4b97-999d-d3b70d8cee34
huntr.dev/bounties/7389e6eb-4bce-4b97-999d-d3b70d8cee34
nvd.nist.gov/vuln/detail/CVE-2022-3561

Code Behaviors & Features

Detect and mitigate CVE-2022-3561 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →