CVE-2022-4067: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

November 20, 2022 (updated November 21, 2022)

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0.

References

github.com/librenms/librenms/commit/8e85698aa3aa4884c2f3d6c987542477eb64f07c
huntr.dev/bounties/3ca7023e-d95c-423f-9e9a-222a67a8ee72
nvd.nist.gov/vuln/detail/CVE-2022-4067

Code Behaviors & Features

Detect and mitigate CVE-2022-4067 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →