CVE-2023-4980
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Sep 15, 2023
Updated: Sep 20, 2023
CWE ID 79
Summary
CVE-2023-4980 is a Cross-site Scripting (XSS) vulnerability affecting the librenms/librenms GitHub repository before version 23.9.0. An attacker can exploit this issue by injecting malicious scripts into a web page viewed by other users, potentially stealing sensitive information or taking control of their browsing sessions. Successful exploitation requires the attacker to manipulate input fields in a specific way, making it crucial for users to update their systems as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Weseek Growi
Affected Vendors
- Weseek