← back
CVE-2019-12465

CVE-2019-12465

EPSS 1.2%
An issue was discovered in LibreNMS 1.50.1. A SQL injection flaw was identified in the ajax_rulesuggest.php file where the term parameter is used insecurely in a database query for showing columns of a table, as demonstrated by an ajax_rulesuggest.php?debug=1&term= request.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.darkmatter.ae/xen1thlabs/librenms-sql-injection-vulnerability-xl-19-024/