CVE-2023-5591: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

October 16, 2023 (updated October 19, 2023)

SQL Injection in GitHub repository librenms/librenms prior to 23.10.0.

References

github.com/advisories/GHSA-mr6h-7x2m-rgmq
github.com/librenms/librenms/commit/908aef65967ce6184bdc587fd105660d5d55129e
huntr.dev/bounties/54813d42-5b93-440e-b9b1-c179d2cbf090
nvd.nist.gov/vuln/detail/CVE-2023-5591

Code Behaviors & Features

Detect and mitigate CVE-2023-5591 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →