Vulnerabilities > Phpipam > Phpipam > 1.5.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-02 | CVE-2023-41580 | Injection vulnerability in PHPipam Phpipam before v1.5.2 was discovered to contain a LDAP injection vulnerability via the dname parameter at /users/ad-search-result.php. | 7.5 |
2023-03-07 | CVE-2023-1211 | SQL Injection vulnerability in PHPipam SQL Injection in GitHub repository phpipam/phpipam prior to v1.5.2. | 7.2 |
2023-03-07 | CVE-2023-1212 | Cross-site Scripting vulnerability in PHPipam Cross-site Scripting (XSS) - Stored in GitHub repository phpipam/phpipam prior to v1.5.2. | 4.8 |
2023-02-04 | CVE-2023-0676 | Cross-site Scripting vulnerability in PHPipam Cross-site Scripting (XSS) - Reflected in GitHub repository phpipam/phpipam prior to 1.5.1. | 6.1 |
2023-02-04 | CVE-2023-0677 | Cross-site Scripting vulnerability in PHPipam Cross-site Scripting (XSS) - Reflected in GitHub repository phpipam/phpipam prior to v1.5.1. | 6.1 |
2023-02-04 | CVE-2023-0678 | Missing Authorization vulnerability in PHPipam Missing Authorization in GitHub repository phpipam/phpipam prior to v1.5.1. | 5.3 |
2022-10-03 | CVE-2022-41443 | Improper Encoding or Escaping of Output vulnerability in PHPipam 1.5.0 phpipam v1.5.0 was discovered to contain a header injection vulnerability via the component /admin/subnets/ripe-query.php. | 9.8 |