CVE-2023-4982 CRITICAL

CVE-2023-4982: Cross-site Scripting (XSS) - Stored in librenms/librenms

Vendor Librenms
Product librenms/librenms
Weakness CWE-79 · XSS
Published September 15, 2023
Last update September 20, 2024
View on NVD All CVEs

CVSS base score

9.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 23.9.0.

Key dates

02Disclosure timeline

September 15, 2023 CVE published
September 20, 2024 Record updated

Related vulnerabilities

04Related CVE

CVE-2019-12715 Cisco Unified Communications Manager Cross-Site Scripting Vulnerability CVE-2025-0506 Rise Blocks – A Complete Gutenberg Page Builder <= 3.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via TitleTag Parameter CVE-2024-9299 SourceCodester Online Railway Reservation System ?page=reserve cross site scripting CVE-2023-37259 Cross site scripting in Export Chat feature CVE-2023-48508 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)