CVE-2024-49758 – LibreNMS Cross-Site Scripting (XSS)

CVE ID : CVE-2024-49758

Published : Nov. 15, 2024, 4:15 p.m. | 1 hour ago

Description : LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. User with Admin role can add Notes to a device, the application did not properly sanitize the user input, when the ExamplePlugin enable, if java script code is inside the device’s Notes, its will be trigger. This vulnerability is fixed in 24.10.0.

Severity: 4.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-49758 – LibreNMS Cross-Site Scripting (XSS)