| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-6204 | LibreNMS 安全漏洞 | librenms | librenms | 高危 | - | 2026-04-13 10:56:17 | Deep Dive |
| CVE-2026-2728 | LibreNMS 安全漏洞 | librenms | librenms | 低危 | - | 2026-04-13 10:39:55 | Deep Dive |
| CVE-2026-26992 | LibreNMS has Stored Cross-Site Scripting via unsanitized /port-groups name | librenms | librenms | 中危 | - | 2026-02-20 02:26:33 | Deep Dive |
| CVE-2026-26991 | LibreNMS vulnerable to Stored Cross-site Scripting through unsanitized /device-groups name | librenms | librenms | 中危 | - | 2026-02-20 02:21:32 | Deep Dive |
| CVE-2026-27016 | LibreNMS has Stored XSS in Custom OID - unit parameter missing strip_tags() | librenms | librenms | Medium | 5.4 | 2026-02-20 01:34:11 | Deep Dive |
| CVE-2026-26990 | LibreNMS has Time-Based Blind SQL Injection in address-search.inc.php | librenms | librenms | High | 8.8 | 2026-02-20 01:29:34 | Deep Dive |
| CVE-2026-26989 | LibreNMS has Stored XSS in Alert Rule | librenms | librenms | Medium | 4.3 | 2026-02-20 01:25:32 | Deep Dive |
| CVE-2026-26988 | LibreNMS: SQL Injection in ajax_table.php spreads through a covert data stream | librenms | librenms | 超危 | - | 2026-02-20 01:17:16 | Deep Dive |
| CVE-2026-26987 | LibreNMS affected by reflected XSS via email field | librenms | librenms | 中危 | - | 2026-02-20 01:11:14 | Deep Dive |
| CVE-2020-36947 | LibreNMS 1.46 - MAC Accounting Graph Authenticated SQL Injection | LibreNMS | LibreNMS | High | 7.1 | 2026-01-27 15:23:49 | Deep Dive |
| CVE-2025-68614 | LibreNMS Alert Rule API Cross-Site Scripting Vulnerability | librenms | librenms | Medium | 4.3 | 2025-12-22 23:43:03 | Deep Dive |
| CVE-2025-65093 | LibreNMS is vulnerable to SQL Injection (Boolean-Based Blind) in hostname parameter in ajax_output.php endpoint | librenms | librenms | Medium | 5.5 | 2025-11-18 23:02:05 | Deep Dive |
| CVE-2025-65014 | LibreNMS has Weak Password Policy | librenms | librenms | Low | 3.7 | 2025-11-18 23:01:40 | Deep Dive |
| CVE-2025-65013 | LibreNMS vulnerable to Reflected Cross-Site Scripting (XSS) in endpoint `/maps/nodeimage` parameter `Image Name` | librenms | librenms | Medium | 6.2 | 2025-11-18 23:01:22 | Deep Dive |
| CVE-2025-62412 | LibreNMS alert-rules Cross-Site Scripting Vulnerability | librenms | librenms | Low | 3.8 | 2025-10-16 17:54:09 | Deep Dive |
| CVE-2025-62411 | Stored XSS in Alert Transport name field in LibreNMS | librenms | librenms | Medium | 5.5 | 2025-10-16 17:50:28 | Deep Dive |
| CVE-2025-62365 | LibreNMS vulnerable to Reflected-XSS in `report_this` function | librenms | librenms | - | - | 2025-10-13 21:43:50 | Deep Dive |
| CVE-2025-55296 | LibreNMS allows stored XSS in Alert Template name field | librenms | librenms | Medium | 5.5 | 2025-08-18 17:27:53 | Deep Dive |
| CVE-2025-54138 | LibreNMS has Authenticated Local File Inclusion in ajax_form.php that Allows RCE | librenms | librenms | High | 7.5 | 2025-07-22 21:33:59 | Deep Dive |
| CVE-2025-47931 | LibreNMS stored Cross-site Scripting vulnerability in poller group name | librenms | librenms | - | - | 2025-05-17 15:51:17 | Deep Dive |