Ecosyste.ms: Advisories

Security Advisories: GSA_kwCzR0hTQS1nODR4LWc5NmctcmNqY84ABDb7

Librenms has a reflected XSS on error alert

XSS on the parameters:/addhost -> param: community

of Librenms versions 24.10.1 (https://github.com/librenms/librenms) allows remote attackers to inject malicious scripts. When a user views or interacts with the page displaying the data, the malicious script executes immediately, leading to potential unauthorized actions or data exposure.

Proof of Concept:

1. Navigate to the /addhost path.

2. Fill in all required fields.

3. In the Community field, enter the following payload: "><img src=a onerror="alert(1)">.
   

4. Submit the form to save changes.
   5 The script will execute when the error alert "No reply with community + payload" appears.
   

Impact:

Execution of Malicious Code

Permalink: https://github.com/advisories/GHSA-g84x-g96g-rcjc
JSON: https://advisories.ecosyste.ms/api/v1/advisories/GSA_kwCzR0hTQS1nODR4LWc5NmctcmNqY84ABDb7
Source: GitHub Advisory Database
Origin: Unspecified
Severity: Moderate
Classification: General
Published: 13 days ago
Updated: 12 days ago

CVSS Score: 5.4
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

EPSS Percentage: 0.00043
EPSS Percentile: 0.1136

Identifiers: GHSA-g84x-g96g-rcjc, CVE-2025-23201
References:

• https://github.com/librenms/librenms/security/advisories/GHSA-g84x-g96g-rcjc
• https://nvd.nist.gov/vuln/detail/CVE-2025-23201
• https://github.com/advisories/GHSA-g84x-g96g-rcjc

Repository: https://github.com/librenms/librenms
Blast Radius: 1.6

Affected Packages