CVE-2026-26987

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below are vulnerable to Reflected XSS attacks via email field. This issue has been fixed in version 26.2.0.

Published Feb 20, 2026

https://github.com/advisories/GHSA-gqx7-99jw-6fpr

CVSS ScoreMedium

6.1

Ecosystem	Package	Version

Ecosystem	Package	Version

Vulnerabilities

CVE-2026-26987

LibreNMS is an auto-discovering PHP/MySQL/SNMP based network monitoring tool. Versions 25.12.0 and below are vulnerable to Reflected XSS attacks via email field. This issue has been fixed in version 26.2.0.

Published Feb 20, 2026

https://github.com/advisories/GHSA-gqx7-99jw-6fpr

CVSS ScoreMedium

6.1


composer	librenms/librenms	1.19
composer	librenms/librenms	1.20.1
composer	librenms/librenms	1.20
composer	librenms/librenms	1.21
composer	librenms/librenms	1.22.01
composer	librenms/librenms	1.22
composer	librenms/librenms	1.23
composer	librenms/librenms	1.24
composer	librenms/librenms	1.25
composer	librenms/librenms	1.26
composer	librenms/librenms	1.27
composer	librenms/librenms	1.28
composer	librenms/librenms	1.29
composer	librenms/librenms	1.30.01
composer	librenms/librenms	1.30
composer	librenms/librenms	1.31.01
composer	librenms/librenms	1.31.02
composer	librenms/librenms	1.31.03
composer	librenms/librenms	1.31
composer	librenms/librenms	1.32.01
composer	librenms/librenms	1.32
composer	librenms/librenms	1.33.01
composer	librenms/librenms	1.33
composer	librenms/librenms	1.34
composer	librenms/librenms	1.35
composer	librenms/librenms	1.36.01
composer	librenms/librenms	1.36
composer	librenms/librenms	1.37
composer	librenms/librenms	1.38
composer	librenms/librenms	1.39
composer	librenms/librenms	1.40
composer	librenms/librenms	1.41
composer	librenms/librenms	1.42.01
composer	librenms/librenms	1.42
composer	librenms/librenms	1.43
composer	librenms/librenms	1.44
composer	librenms/librenms	1.45
composer	librenms/librenms	1.46
composer	librenms/librenms	1.47
composer	librenms/librenms	1.48.1
composer	librenms/librenms	1.48
composer	librenms/librenms	1.49
composer	librenms/librenms	1.50.1
composer	librenms/librenms	1.50
composer	librenms/librenms	1.51
composer	librenms/librenms	1.52
composer	librenms/librenms	1.53.1
composer	librenms/librenms	1.53
composer	librenms/librenms	1.54
composer	librenms/librenms	1.55

Ecosystem	Package	Version


composer	librenms/librenms	1.19
composer	librenms/librenms	1.20.1
composer	librenms/librenms	1.20
composer	librenms/librenms	1.21
composer	librenms/librenms	1.22.01
composer	librenms/librenms	1.22
composer	librenms/librenms	1.23
composer	librenms/librenms	1.24
composer	librenms/librenms	1.25
composer	librenms/librenms	1.26
composer	librenms/librenms	1.27
composer	librenms/librenms	1.28
composer	librenms/librenms	1.29
composer	librenms/librenms	1.30.01
composer	librenms/librenms	1.30
composer	librenms/librenms	1.31.01
composer	librenms/librenms	1.31.02
composer	librenms/librenms	1.31.03
composer	librenms/librenms	1.31
composer	librenms/librenms	1.32.01
composer	librenms/librenms	1.32
composer	librenms/librenms	1.33.01
composer	librenms/librenms	1.33
composer	librenms/librenms	1.34
composer	librenms/librenms	1.35
composer	librenms/librenms	1.36.01
composer	librenms/librenms	1.36
composer	librenms/librenms	1.37
composer	librenms/librenms	1.38
composer	librenms/librenms	1.39
composer	librenms/librenms	1.40
composer	librenms/librenms	1.41
composer	librenms/librenms	1.42.01
composer	librenms/librenms	1.42
composer	librenms/librenms	1.43
composer	librenms/librenms	1.44
composer	librenms/librenms	1.45
composer	librenms/librenms	1.46
composer	librenms/librenms	1.47
composer	librenms/librenms	1.48.1
composer	librenms/librenms	1.48
composer	librenms/librenms	1.49
composer	librenms/librenms	1.50.1
composer	librenms/librenms	1.50
composer	librenms/librenms	1.51
composer	librenms/librenms	1.52
composer	librenms/librenms	1.53.1
composer	librenms/librenms	1.53
composer	librenms/librenms	1.54
composer	librenms/librenms	1.55

Find vulnerabilities. Fix fast with AI.

CVE-2026-26987

CVE-2026-26987