CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

501 matches found

RedhatCVE•added 2025/05/22 10:11 p.m.•3 views

CVE-2022-1225

Incorrect Privilege Assignment in GitHub repository phpipam/phpipam prior to 1.4.6...

6.5CVSS6.9AI score0.00226EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:8 p.m.•4 views

CVE-2022-3845

A vulnerability has been found in phpipam and classified as problematic. Affected by this vulnerability is an unknown functionality of the file app/admin/import-export/import-load-data.php of the component Import Preview Handler. The manipulation leads to cross site scripting. The attack can be...

6.1CVSS6.3AI score0.00328EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:53 p.m.•3 views

CVE-2021-35438

phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator...

6.1CVSS5.8AI score0.00447EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 1:14 p.m.•3 views

CVE-2018-1000870

PHPipam version 1.3.2 and earlier contains a CWE-79 vulnerability in /app/admin/users/print-user.php that can result in Execute code in the victims browser. This attack appear to be exploitable via Attacker change theme parameter in user settings. AdminVictim views user in admin-panel and gets...

5.4CVSS7.1AI score0.00344EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 1:14 p.m.•3 views

CVE-2018-1000869

phpIPAM version 1.3.2 contains a CWE-89 vulnerability in /app/admin/nat/item-add-submit.php that can result in SQL Injection.. This attack appear to be exploitable via Rough user, exploiting the vulnerability to access information he/she does not have access to.. This vulnerability appears to hav...

9.8CVSS7.2AI score0.00281EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 8:33 a.m.•6 views

CVE-2019-16692

phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/filter-result.php table parameter when action=add is used...

9.8CVSS7.9AI score0.16281EPSS

Exploits6References1

RedhatCVE•added 2025/05/22 8:19 a.m.•5 views

CVE-2019-16695

phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/filter.php table parameter when action=add is used...

9.8CVSS8AI score0.01037EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 4:39 a.m.•5 views

CVE-2019-16696

phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/edit.php table parameter when action=add is used...

9.8CVSS8AI score0.01037EPSS

Exploits1References1

Packet Storm•added 2025/04/11 12:0 a.m.•360 views

📄 phpIPAM 1.6 Cross Site Scripting

phpIPAM version 1.6 suffers from a cross site scripting vulnerability. Exploit Title: phpIPAM 1.6 Reflected XSS via closeClass Parameter in popup.php Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/phpipam/phpipam Software Link: https://github.com/phpipam/phpipam...

6.1CVSS5.9AI score0.06014EPSS

Exploits3

Exploit DB•added 2025/04/11 12:0 a.m.•285 views

phpIPAM 1.6 - Reflected Cross Site Scripting (XSS)

Exploit Title: phpIPAM 1.6 - Reflected Cross Site Scripting XSS Date: 2024-10-26 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/phpipam/phpipam Software Link: https://github.com/phpipam/phpipam Version: 1.5.1 Tested on: Ubuntu Windows CVE : CVE-2023-24657 PoC:...

6.1CVSS6.3AI score0.06014EPSS

Exploits3

CNVD•added 2025/04/09 12:0 a.m.•7 views

phpIPAM cross-site scripting vulnerability (CNVD-2025-06929)

phpIPAM is phpIPAM open source set of open source PHP and MySQL based IP address management application IPAM. phpIPAM suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and escaping of user-supplied data, which can be exploited by an...

5.4CVSS6.3AI score0.00304EPSS

Exploits0References1

RedhatCVE•added 2025/04/02 12:33 a.m.•8 views

CVE-2024-55093