WEB LibreNMS Alert Rule Name Stored Cross-Site Scripting (CVE-2024-47525)

Rule ID

1235782

Severity

Medium

Description

A stored cross-site scripting vulnerability has been reported for LibreNMS. The vulnerability is due to improper input validation in the Alert Rules page. A remote, authenticated attacker could exploit the vulnerability by sending a crafted request to the target server. Successful exploits could result in arbitrary code execution in the context of the victim's browser.

Impact

Cross-site scripting

Recommendation

Update vendor's patch.

IPS Category

Web threats

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

CVE-2024-47525

T0807

T1059

Keywords

N/A

Date Created

2024/10/21

Last Updated

2025/12/26

This website uses cookies to ensure you get the best experience on our website.

Learn more