{"id":"GHSA-5h77-4245-pg5p","summary":"Cross-site Scripting in librenms/librenms","details":"Cross-site Scripting (XSS) - Stored in GitHub repository librenms/librenms prior to 22.10.0.","aliases":["CVE-2022-3562"],"modified":"2023-11-08T04:09:51.450809Z","published":"2022-11-20T06:30:16Z","database_specific":{"github_reviewed":true,"nvd_published_at":"2022-11-20T05:15:00Z","cwe_ids":["CWE-79"],"github_reviewed_at":"2022-11-21T23:56:49Z","severity":"MODERATE"},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-3562"},{"type":"WEB","url":"https://github.com/librenms/librenms/commit/43cb72549d90e338f902b359a83c23d3cb5a2645"},{"type":"WEB","url":"https://huntr.dev/bounties/bb9f76db-1314-44ae-9ccc-2b69679aa657"}],"affected":[{"package":{"name":"librenms/librenms","ecosystem":"Packagist","purl":"pkg:composer/librenms/librenms"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"22.10.0"}]}],"versions":["1.19","1.20","1.20.1","1.21","1.22","1.22.01","1.23","1.24","1.25","1.26","1.27","1.28","1.29","1.30","1.30.01","1.31","1.31.01","1.31.02","1.31.03","1.32","1.32.01","1.33","1.33.01","1.34","1.35","1.36","1.36.01","1.37","1.38","1.39","1.40","1.41","1.42","1.42.01","1.43","1.44","1.45","1.46","1.47","1.48","1.48.1","1.49","1.50","1.50.1","1.51","1.52","1.53","1.53.1","1.54","1.55","1.56","1.57","1.58","1.58.1","1.59","1.60","1.61","1.62","1.62.1","1.62.2","1.63","1.64","1.64.1","1.65","1.65.1","1.66","1.67","1.68","1.69","1.70.0","1.70.1","21.1.0","21.10.0","21.10.1","21.10.2","21.11.0","21.12.0","21.12.1","21.2.0","21.3.0","21.4.0","21.5.0","21.5.1","21.6.0","21.7.0","21.8.0","21.9.0","21.9.1","22.1.0","22.2.0","22.2.1","22.2.2","22.3.0","22.4.0","22.4.1","22.5.0","22.6.0","22.7.0","22.8.0","22.9.0"],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/11/GHSA-5h77-4245-pg5p/GHSA-5h77-4245-pg5p.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}