Hi,
Our research team in KAIST WSP Lab found a reflected vulnerability in LibreNMS.
-
Description: An Stroed XSS vulnerability was identified in the API Access page due to insufficient sanitization of the $api->description variable. As a result, arbitrary Javascript code can get executed.
-
Steps to reproduce the report
- Login to the website
- Go to the link: [LibreNMS root URL]/api-access
- Click the “Create API access token” button
- Enter “” in “Descr:”, and click the “Create API Token”
- Boom!
If there are any active developers on this project feel free to contact us for more information.
Additionally, I would like to get a CVE for the reported bug. How do I do this?
Best regards,
Seongil.
Hi @Seongil_Wi
Thanx for your report. Fix will be merged in a few days.
(https://github.com/librenms/librenms/pull/12739)
Concerning the CVE, you’ll have to contact MITRE i suppose :
https://cve.mitre.org/
Bye
@Seongil_Wi
Fix is now merged. Master branch is fixed, and stable will be in a couple of days with next release.
Thanx for your report and Bye
system
Closed
4
This topic was automatically closed 91 days after the last reply. New replies are no longer allowed.