CVE-2026-30480 - Vulnerability Analysis
N/aLast Updated: April 14, 2026
LibreNMS - Local File Inclusion
Published: April 14, 2026Updated: April 14, 2026PoC Available
Overview
LibreNMS 22.11.0-23-gd091788f2 contains a local file inclusion caused by path traversal sequences in the nfsen parameter in nfsen.inc.php, letting authenticated attackers include arbitrary PHP files.
Severity & Score
Severity: N/a
Impact
Authenticated attackers can include and execute arbitrary PHP files, potentially leading to remote code execution.
Mitigation
Update to the latest version of LibreNMS.
Related Resources
Details
- CVE ID
- CVE-2026-30480
- Severity
- N/a
- Type
- file_inclusion
- Status
- new
CVSS Metrics
N/A