CVE-2026-2728
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
3.5 / 10
Vulnerability Description
LibreNMS versions before 26.3.0 are affected by an authenticated Cross-site Scripting vulnerability on the showconfig page. Successful exploitation requires administrative privileges. Exploitation could result in XSS attacks being performed against other users with access to the page.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-79
Source
NVD
Vendor
composer
Product
librenms/librenms
Discussion (0)
Add Comment
No comments yet. Be the first!