the opennms group Summary
Latest vulnerabilities published by the opennms group
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
SQL Injection Flaw in OpenNMS Horizon and Meridian Applications
CVE-2025-53122The Opennms GroupHorizon6.9MEDIUMStored Cross-Site Scripting in OpenMNS Horizon by OpenNMS
CVE-2025-53121The Opennms GroupHorizon6.9MEDIUMCross-site scripting in bootstrap.jsp
CVE-2023-40314The Opennms GroupHorizon5.8MEDIUMAuthenticated XXE Injection Via The File Editor
CVE-2023-40612The Opennms GroupHorizon5.3MEDIUMROLE_FILESYSTEM_EDITOR Can Be Used To Escalate To ROLE_ADMIN
CVE-2023-40315The Opennms GroupHorizonπΎπ‘8HIGHDisable BeanShell Interpreter Remote Server Mode
CVE-2023-40313The Opennms GroupHorizon8.8HIGHROLE_REST can be used to escalate to ROLE_ADMIN via /rest/users
CVE-2023-0872The Opennms GroupHorizonπΎπ‘8.2HIGHStored XSS in multiple JSP files in opennms/opennms
CVE-2023-40311The Opennms GroupHorizon6.7MEDIUMReflected XSS in multiple JSP files in opennms/opennms
CVE-2023-40312The Opennms GroupHorizon6.7MEDIUMAn XML External Entity injection vulnerability
CVE-2023-0871The Opennms GroupHorizon5.4MEDIUMForm Can Be Manipulated with Cross-Site Request Forgery (CSRF)
CVE-2023-0870The Opennms GroupMeridian8.1HIGHPlaintext Password Present in the Web logs
CVE-2023-0815The Opennms GroupMeridian6.8MEDIUMMultiple stored and reflected Cross-site Scripting in webapp
CVE-2023-0867The OpenNMS GroupMeridian6.1MEDIUMStealing Cookies using Reflected XSS via graph results
CVE-2023-0868The OpenNMS GroupMeridian6.1MEDIUMCross-site scripting in outage/list.htm
CVE-2023-0869The OpenNMS Group Meridian6.1MEDIUMUnauthenticated, stored XSS in display of alarm reduction-key
CVE-2023-0846The OpenNMS Group Horizon6.1MEDIUM
26 June 2025
16 November 2023
23 August 2023
17 August 2023
14 August 2023
11 August 2023
22 March 2023
23 February 2023
22 February 2023
No more vulnerabilities to load.