CVE-2022-4067 | THREATINT

Description

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0.

PUBLISHED Reserved 2022-11-20 | Published 2022-11-20 | Updated 2025-04-28 | Assigner @huntrdev

LOW: 3.4CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N

Problem types

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product status

Any version before 22.10.0

affected

References

huntr.dev/bounties/3ca7023e-d95c-423f-9e9a-222a67a8ee72

github.com/...ommit/8e85698aa3aa4884c2f3d6c987542477eb64f07c

huntr.dev/bounties/3ca7023e-d95c-423f-9e9a-222a67a8ee72

github.com/...ommit/8e85698aa3aa4884c2f3d6c987542477eb64f07c

cve.org (CVE-2022-4067)

nvd.nist.gov (CVE-2022-4067)

Download JSON

help @ threatint.eu