Severity: medium (5.4)

First published: Fri Sep 15 2023

Last modified: Wed Sep 20 2023

CWE: 79

Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 23.9.0.

Any of

  • composer/librenms/librenms
    fixed in: 23.9.0


  • What is the severity of GHSA-qxrq-376q-p39h?

    The severity of GHSA-qxrq-376q-p39h is medium, with a severity value of 5.4.

  • How can I fix GHSA-qxrq-376q-p39h?

    To fix GHSA-qxrq-376q-p39h, update the librenms/librenms package to version 23.9.0 or above.

  • What is the vulnerability description of GHSA-qxrq-376q-p39h?

    GHSA-qxrq-376q-p39h is a Cross-site Scripting (XSS) vulnerability affecting the GitHub repository librenms/librenms prior to version 23.9.0.

  • Where can I find more information about GHSA-qxrq-376q-p39h?

    You can find more information about GHSA-qxrq-376q-p39h on the NIST NVD website (https://nvd.nist.gov/vuln/detail/CVE-2023-4980), GitHub repository (https://github.com/librenms/librenms/commit/cfd642be6a1e988453bd63069d17db3664e7de97), and Huntr.dev bounty (https://huntr.dev/bounties/470b9b13-b7fe-4b3f-a186-fdc5dc193976).

  • What is the CWE category of GHSA-qxrq-376q-p39h?

    GHSA-qxrq-376q-p39h belongs to CWE category 79 (Cross-site Scripting).

SecAlerts Pty Ltd.
Fortitude Valley,
QLD 4006, Australia
© Copyright 2023 - ABN: 70 645 966 203, ACN: 645 966 203