CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

IPPlan is a web-based multilingual TCP IP address management IPAM software and tracking tool. Simplifying the management of the IP address space, IPPlan version 4.92b is vulnerable to a cross-site scripting vulnerability, which stems from a cross-site scripting XSS vulnerability found in...

3.5CVSS1.4AI score0.00143EPSS

Exploits1

NVD•added 2022/05/17 11:15 a.m.•7 views

CVE-2021-42943

Stored cross-site scripting XSS in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter...

5.4CVSS0.00143EPSS

Exploits1References1

OSV•added 2022/05/17 11:15 a.m.•0 views

CVE-2021-42943

Stored cross-site scripting XSS in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter...

5.4CVSS5.8AI score0.00143EPSS

Exploits1References1

Prion•added 2022/05/17 11:15 a.m.•13 views

Cross site scripting

Stored cross-site scripting XSS in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter...

3.5CVSS5.3AI score0.00143EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/05/17 10:47 a.m.•13 views

CVE-2021-42943

Stored cross-site scripting XSS in admin/usermanager.php over IPPlan v4.92b allows remote attackers to inject arbitrary web script or HTML via the userid parameter...

5.5AI score0.00143EPSS

Exploits1References1

CVE•added 2022/05/17 10:47 a.m.•61 views

CVE-2021-42943

IPPlan 4.92b is affected by a stored XSS vulnerability in admin/usermanager.php, allowing an attacker to inject arbitrary script/HTML via the userid parameter. This is described across multiple sources (NVD/CNVD/CVELIST/CNNVD) referencing the same issue and version. No explicit exploit details, p...

5.4CVSS5.3AI score0.00143EPSS

Exploits1References1Affected Software1

CNNVD•added 2022/05/17 12:0 a.m.•1 views

IPPlan 跨站脚本漏洞

5.4CVSS5.5AI score0.00143EPSS

Exploits1References3

Tenable Nessus•added 2010/02/24 12:0 a.m.•23 views

Debian DSA-1827-1 : ipplan - insufficient input sanitising

It was discovered that ipplan, a web-based IP address manager and tracker, does not sufficiently escape certain input parameters, which allows remote attackers to conduct cross-site scripting attacks. The oldstable distribution etch does not contain ipplan. %NASLMINLEVEL 70300 C Tenable Network...

4.3CVSS5.1AI score0.00407EPSS

Exploits1References3

OpenVAS•added 2009/07/15 12:0 a.m.•14 views

Debian Security Advisory DSA 1827-1 (ipplan)

The remote host is missing an update to ipplan announced via advisory DSA 1827-1. OpenVAS Vulnerability Test $Id: deb18271.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1827-1 ipplan Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

4.3CVSS6.5AI score0.00407EPSS

Exploits1

OpenVAS•added 2009/07/15 12:0 a.m.•17 views

Debian: Security Advisory (DSA-1827-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.6AI score0.00407EPSS

Exploits1References3

seebug.org•added 2009/07/09 12:0 a.m.•26 views

IPplan grp参数跨站脚本漏洞

BUGTRAQ ID: 35037 CVECAN ID: CVE-2009-1732 IPplan是用PHP编写的TCP IP地址管理软件和追踪工具。 IPplan的admin/usermanager模块没有正确地过滤用户所提交的grp参数，远程攻击者可以通过提交恶意请求执行跨站脚本攻击，导致在用户浏览器会话中执行任意HTML和脚本代码。 IPplan 4.91a 厂商补丁： Debian ------ Debian已经为此发布了一个安全公告（DSA-1827-1）以及相应补丁: DSA-1827-1：New ipplan packages fix cross-site scriptin...

4.3CVSS0.2AI score0.00407EPSS

Exploits1

Debian•added 2009/07/06 10:20 a.m.•19 views

[SECURITY] [DSA 1827-1] New ipplan packages fix cross-site scripting

------------------------------------------------------------------------ Debian Security Advisory DSA-1827-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 06, 2009 http://www.debian.org/security/faq -...

4.3CVSS5.9AI score0.00407EPSS

Exploits1

OSV•added 2009/07/06 12:0 a.m.•18 views

DSA-1827-1 ipplan - cross-site scripting

Bulletin has no description...

4.3CVSS6.3AI score0.00407EPSS

Exploits1

securityvulns•added 2009/07/06 12:0 a.m.•46 views

[SECURITY] [DSA 1827-1] New ipplan packages fix cross-site scripting

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1827-1 [email protected] http://www.debian.org/security/ Steffen Joeris July 06, 2009 http://www.debian.org/security/faq -...

4.3CVSS1.1AI score0.00407EPSS

Exploits1

Prion•added 2009/05/20 7:30 p.m.•4 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in IPplan 4.91a allows remote attackers to hijack the authentication of administrators for requests that 1 change the password, 2 add users, or 3 delete users via unknown vectors...

6.8CVSS7.6AI score0.00142EPSS

Exploits0References4Affected Software1

NVD•added 2009/05/20 7:30 p.m.•6 views

CVE-2009-1733

6.8CVSS7.1AI score0.00142EPSS

Exploits0References4

NVD•added 2009/05/20 7:30 p.m.•11 views

CVE-2009-1732

Cross-site scripting XSS vulnerability in admin/usermanager in IPplan 4.91a allows remote attackers to inject arbitrary web script or HTML via the grp parameter...

4.3CVSS5.6AI score0.00407EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by