Vulnerabilities > Phpipam > Phpipam > 1.4.4

DATE CVE VULNERABILITY TITLE RISK
2022-01-19 CVE-2022-23046 SQL Injection vulnerability in PHPipam 1.4.4
PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php
network
low complexity
phpipam CWE-89
6.5
6.5