| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-53122 | SQLi in OpenNMS Horizon and Meridian | The OpenNMS Group | Horizon | - | - | 2025-06-26 19:49:44 | Deep Dive |
| CVE-2025-53121 | Stored XSS in multiple 33.0.8files in opennms/opennms | The OpenNMS Group | Horizon | - | - | 2025-06-26 18:51:35 | Deep Dive |
| CVE-2023-40314 | Cross-site scripting in bootstrap.jsp | The OpenNMS Group | Horizon | Medium | 5.8 | 2023-11-16 21:14:07 | Deep Dive |
| CVE-2023-40612 | Authenticated XXE Injection Via The File Editor | The OpenNMS Group | Horizon | Medium | 5.3 | 2023-08-23 18:22:49 | Deep Dive |
| CVE-2023-40315 | ROLE_FILESYSTEM_EDITOR Can Be Used To Escalate To ROLE_ADMIN | The OpenNMS Group | Horizon | Medium | 5.3 | 2023-08-17 19:04:01 | Deep Dive |
| CVE-2023-40313 | Disable BeanShell Interpreter Remote Server Mode | The OpenNMS Group | Horizon | High | 7.1 | 2023-08-17 18:24:09 | Deep Dive |
| CVE-2023-40312 | Reflected XSS in multiple JSP files in opennms/opennms | The OpenNMS Group | Horizon | Medium | 6.7 | 2023-08-14 17:35:27 | Deep Dive |
| CVE-2023-40311 | Stored XSS in multiple JSP files in opennms/opennms | The OpenNMS Group | Horizon | Medium | 6.7 | 2023-08-14 17:31:30 | Deep Dive |
| CVE-2023-0872 | ROLE_REST can be used to escalate to ROLE_ADMIN via /rest/users | The OpenNMS Group | Horizon | High | 8.2 | 2023-08-14 17:21:58 | Deep Dive |
| CVE-2023-0871 | An XML External Entity injection vulnerability | The OpenNMS Group | Horizon | Medium | 5.4 | 2023-08-11 16:13:51 | Deep Dive |
| CVE-2023-0870 | Form Can Be Manipulated with Cross-Site Request Forgery (CSRF) | The OpenNMS Group | Meridian | High | 8.1 | 2023-03-22 18:16:43 | Deep Dive |
| CVE-2023-0815 | Plaintext Password Present in the Web logs | The OpenNMS Group | Meridian | Medium | 6.8 | 2023-02-23 14:52:06 | Deep Dive |
| CVE-2023-0867 | Multiple stored and reflected Cross-site Scripting in webapp | The OpenNMS Group | Meridian | Medium | 6.7 | 2023-02-23 14:49:31 | Deep Dive |
| CVE-2023-0868 | Stealing Cookies using Reflected XSS via graph results | The OpenNMS Group | Meridian | Medium | 6.7 | 2023-02-23 14:46:03 | Deep Dive |
| CVE-2023-0869 | Cross-site scripting in outage/list.htm | The OpenNMS Group | Meridian | Medium | 5.8 | 2023-02-23 14:43:41 | Deep Dive |
| CVE-2023-0846 | Unauthenticated, stored XSS in display of alarm reduction-key | The OpenNMS Group | Horizon | Medium | 6.7 | 2023-02-22 18:35:19 | Deep Dive |
| CVE-2016-6556 | OpenNMS Stored XSS via SNMP Agent Data | OpenNMS | OpenNMS | High | 7.1 | 2022-06-15 18:35:48 | Deep Dive |
| CVE-2016-6555 | OpenNMS Stored XSS via SNMP Trap Alerts | OpenNMS | OpenNMS | High | 7.1 | 2022-06-15 18:35:44 | Deep Dive |
| CVE-2021-25932 | Opennms Group OpenNMS 跨站脚本漏洞 | - | OpenNMS | 中危 | - | 2021-06-01 11:15:51 | Deep Dive |
| CVE-2021-25934 | Opennms Group OpenNMS 跨站脚本漏洞 | - | OpenNMS | 中危 | - | 2021-05-25 18:42:29 | Deep Dive |