Vulnerabilities > Phpipam
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2018-12-20 | CVE-2018-1000870 | Cross-site Scripting vulnerability in PHPipam PHPipam version 1.3.2 and earlier contains a CWE-79 vulnerability in /app/admin/users/print-user.php that can result in Execute code in the victims browser. | 5.4 |
2018-12-20 | CVE-2018-1000869 | SQL Injection vulnerability in PHPipam 1.3.2 phpIPAM version 1.3.2 contains a CWE-89 vulnerability in /app/admin/nat/item-add-submit.php that can result in SQL Injection.. | 9.8 |
2018-12-20 | CVE-2018-1000860 | Cross-site Scripting vulnerability in PHPipam phpipam version 1.3.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in The value of the phpipamredirect cookie is copied into an HTML tag on the login page encapsulated in single quotes. | 4.7 |
2018-04-24 | CVE-2018-10329 | Cross-site Scripting vulnerability in PHPipam 1.3.1 app/tools/mac-lookup/index.php in phpIPAM 1.3.1 has Reflected XSS on /tools/mac-lookup/ via the mac parameter. | 6.1 |
2018-04-21 | CVE-2017-15640 | Cross-site Scripting vulnerability in PHPipam app/sections/user-menu.php in phpIPAM before 1.3.1 has XSS via the ip parameter. | 5.4 |
2017-03-05 | CVE-2017-6481 | Cross-site Scripting vulnerability in PHPipam Multiple Cross-Site Scripting (XSS) issues were discovered in phpipam 1.2. | 6.1 |