Miggo Logo
Miggo Vulnerability Database
CVE-2023-4979

CVE-2023-4979: LibreNMS Cross-site Scripting vulnerability

5.4

CVSS Score
3.1

Basic Information

CVE ID
CVE-2023-4979
GHSA ID
GHSA-jp3c-g46v-jg2c
EPSS Score
0.15723%
CWE
CWE-79
Published
9/15/2023
Updated
11/11/2023
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
librenms/librenmscomposer< 23.9.023.9.0

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from improper output escaping in the outages page. The commit diff shows the replacement of addcslashes with htmlspecialchars for the 'to' and 'from' parameters. addcslashes is insufficient for XSS prevention in HTML/JS contexts because it does not encode critical characters like <, >, &, etc. The use of htmlspecialchars in the patch confirms the root cause was improper escaping during output generation. The vulnerable code resided in the JavaScript configuration section of outages.inc.php, where user-controlled 'to' and 'from' parameters were insufficiently sanitized.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*ross-sit* S*riptin* (XSS) - R**l**t** in *it*u* r*pository li*r*nms/li*r*nms prior to **.*.*.

Reasoning

T** vuln*r**ility st*ms *rom improp*r output *s**pin* in t** out***s p***. T** *ommit *i** s*ows t** r*pl***m*nt o* `****sl*s**s` wit* `*tmlsp**i*l***rs` *or t** 'to' *n* '*rom' p*r*m*t*rs. `****sl*s**s` is insu**i*i*nt *or XSS pr*v*ntion in *TML/JS