Product
openenergymonitor emoncms
8 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-60938
CVE-2025-60936
CVE-2025-22992
CVE-2023-33518
CVE-2021-26716
CVE-2019-1010008
CVE-2016-7813
CVE-2017-5964
all versions
Emoncms 11.7.3 has a remote code execution vulnerability in the firmware upload feature that allows authenticated users to execute
all versions
Emoncms 11.7.3 is vulnerable to Cross Site in the input handling mechanism. This vulnerability allows authenticated attackers with
<= 11.6.9
A SQL Injection vulnerability exists in the /feed/insert.json endpoint of the Emoncms project >= 11.6.9. The vulnerability is caus
all versions
emoncms v11 and later was discovered to contain an information disclosure vulnerability which allows attackers to obtain the web d
<= 10.2.7
Modules/input/Views/schedule.php in Emoncms through 10.2.7 allows XSS via the node parameter.
all versions
OpenEnergyMonitor Project Emoncms 9.8.8 is affected by: Cross Site Scripting (XSS). The impact is: Theoretically low, but might po
<= 0.8.9
Cross-site scripting vulnerability in DERAEMON-CMS version 0.8.9 and earlier allows remote attackers to inject arbitrary web scrip
<= 9.8.0
An issue was discovered in Emoncms through 9.8.0. The vulnerability exists due to insufficient filtration of user-supplied data in