PT-2026-20981 · Librenms · Librenms
Murrant
·
Published
2026-02-18
·
Updated
2026-02-20
·
CVE-2026-26987
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
LibreNMS versions 25.12.0 and below
Description
LibreNMS is a network monitoring tool susceptible to Reflected Cross-Site Scripting (XSS) attacks. The issue occurs through the email field. This impacts versions prior to 26.2.0.
Recommendations
Update to version 26.2.0 or later.
Exploit
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Librenms