Vulnerabilities > Phpipam > Phpipam > 1.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-31 | CVE-2024-55093 | Cross-site Scripting vulnerability in PHPipam phpIPAM through 1.7.3 has a reflected Cross-Site Scripting (XSS) vulnerability in the install scripts. | 4.7 |
| 2025-03-20 | CVE-2024-10719 | Cross-site Scripting vulnerability in PHPipam A stored cross-site scripting (XSS) vulnerability exists in phpipam version 1.5.2, specifically in the circuits options functionality. | 5.4 |
| 2025-03-20 | CVE-2024-10720 | Cross-site Scripting vulnerability in PHPipam A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. | 6.1 |
| 2025-03-20 | CVE-2024-10722 | Cross-site Scripting vulnerability in PHPipam A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. | 5.4 |
| 2025-03-20 | CVE-2024-10723 | Cross-site Scripting vulnerability in PHPipam A stored cross-site scripting (XSS) vulnerability was discovered in phpipam/phpipam version 1.5.2. | 5.4 |
| 2025-03-20 | CVE-2024-10724 | Cross-site Scripting vulnerability in PHPipam A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2, specifically in the Subnet NAT translations section when editing the Destination address. | 5.4 |
| 2025-03-20 | CVE-2024-10725 | Cross-site Scripting vulnerability in PHPipam A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2. | 5.4 |
| 2025-03-20 | CVE-2024-10727 | Unspecified vulnerability in PHPipam A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0 through 1.6.0. | 6.1 |
| 2024-11-15 | CVE-2024-0787 | Unspecified vulnerability in PHPipam phpIPAM version 1.5.1 contains a vulnerability where an attacker can bypass the IP block mechanism to brute force passwords for users by using the 'X-Forwarded-For' header. | 5.9 |
| 2024-08-29 | CVE-2024-41358 | Cross-site Scripting vulnerability in PHPipam 1.6 phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\import-export\import-load-data.php. | 6.1 |