Описание
phpIPAM 1.4.4 allows Reflected XSS and CSRF via app/admin/subnets/find_free_section_subnets.php of the subnets functionality.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- ProductThird Party Advisory
- PatchThird Party Advisory
- Not Applicable
- ExploitThird Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- ProductThird Party Advisory
- PatchThird Party Advisory
- Not Applicable
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpipam:phpipam:1.4.4:*:*:*:*:*:*:*
EPSS
Процентиль: 68%
0.00572
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
debian
почти 4 года назад
phpIPAM 1.4.4 allows Reflected XSS and CSRF via app/admin/subnets/find ...
CVSS3: 6.1
github
почти 4 года назад
phpIPAM 1.4.4 allows Reflected XSS and CSRF via app/admin/subnets/find_free_section_subnets.php of the subnets functionality.
EPSS
Процентиль: 68%
0.00572
Низкий
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-79