Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-10727

Опубликовано: 20 мар. 2025
Источник: nvd
CVSS3: 3.5
CVSS3: 6.1
EPSS Низкий

Описание

A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0 through 1.6.0. The vulnerability arises when the application receives data in an HTTP request and includes that data within the immediate response in an unsafe manner. This allows an attacker to execute arbitrary JavaScript in the context of the user's browser, potentially leading to full compromise of the user.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:phpipam:phpipam:*:*:*:*:*:*:*:*
Версия от 1.5.0 (включая) до 1.6 (включая)

EPSS

Процентиль: 21%
0.00068
Низкий

3.5 Low

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

debian логотип

CVE-2024-10727

CVSS3: 6.1
debian
11 месяцев назад

A reflected cross-site scripting (XSS) vulnerability exists in phpipam ...

github логотип

GHSA-6pvw-p9fg-rwxj

CVSS3: 3.5
github
11 месяцев назад

A reflected cross-site scripting (XSS) vulnerability exists in phpipam/phpipam versions 1.5.0 through 1.6.0. The vulnerability arises when the application receives data in an HTTP request and includes that data within the immediate response in an unsafe manner. This allows an attacker to execute arbitrary JavaScript in the context of the user's browser, potentially leading to full compromise of the user.

EPSS

Процентиль: 21%
0.00068
Низкий

3.5 Low

CVSS3

6.1 Medium

CVSS3

Дефекты

CWE-79