phpIPAM cross-site scripting vulnerability (CNVD-2021-45440)

phpIPAM is a PHP-based open source ip address management software. A reflected cross-site scripting vulnerability exists in phpIPAM version 1.4.3. The vulnerability can be exploited by an attacker to conduct a cross-site scripting attack via app/dashboard/widgets/ipcalc-result.php and...

CVE-2021-35438

phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator...

CVE-2021-35438

phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator...

Cross site scripting

phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator...

CVE-2021-35438

phpIPAM 1.4.3 is vulnerable to a reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php (IP Calculator). The CVE-2021-35438 entry is corroborated by multiple sources (NVD, Red Hat, CNVD, OSV, CVE lists) noting a reflected XSS vulnerability in this specifi...

CVE-2021-35438

phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator...

PT-2021-20911

Name of the Vulnerable Software and Affected Versions: phpIPAM version 1.4.3 Description: The issue allows for Reflected XSS via the IP calculator, specifically through the app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php endpoints. Recommendations: For phpIPAM versi...

phpIPAM 跨站脚本漏洞

phpIPAM is a PHP-based open source ip address management software. A reflected cross-site scripting vulnerability exists in phpIPAM version 1.4.3. The vulnerability can be exploited by an attacker to conduct a cross-site scripting attack via app/dashboard/widgets/ipcalc-result.php and...

DEBIAN-CVE-2006-3848

Cross-site scripting XSS vulnerability in CGI wrapper for IP Calculator IPCalc 0.40 allows remote attackers to inject arbitrary web script or HTML via the URI REQUESTURI environment variable, which is used in the actionurl variable...

CVE-2006-3848

Cross-site scripting XSS vulnerability in CGI wrapper for IP Calculator IPCalc 0.40 allows remote attackers to inject arbitrary web script or HTML via the URI REQUESTURI environment variable, which is used in the actionurl variable...

CVE-2006-3848

The CVE-2006-3848 entry describes a Cross-site Scripting (XSS) vulnerability in the CGI wrapper for IP Calculator (IPCalc) version 0.40. The flaw arises because the attacker can inject arbitrary web script or HTML through the URI (REQUEST_URI environment variable), which is used in the actionurl ...