VYPR

Vendor CVEs

Phpipam

All CVEs

53 total · sorted by risk
  • CVE-2018-1000870MedDec 20, 2018
    risk 0.00cvss 5.4epss 0.01

    PHPipam version 1.3.2 and earlier contains a CWE-79 vulnerability in /app/admin/users/print-user.php that can result in Execute code in the victims browser. This attack appear to be exploitable via Attacker change theme parameter in user settings. Admin(Victim) views user in…

  • CVE-2018-1000869CriDec 20, 2018
    risk 0.00cvss 9.8epss 0.02

    phpIPAM version 1.3.2 contains a CWE-89 vulnerability in /app/admin/nat/item-add-submit.php that can result in SQL Injection.. This attack appear to be exploitable via Rough user, exploiting the vulnerability to access information he/she does not have access to.. This…

  • CVE-2015-6529Aug 20, 2015
    risk 0.00cvss epss 0.02

    Multiple cross-site scripting (XSS) vulnerabilities in phpipam 1.1.010 allow remote attackers to inject arbitrary web script or HTML via the (1) section parameter to site/error.php or (2) ip parameter to site/tools/searchResults.php.

Page 2 of 2