CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

GithubExploit•added 2022/01/22 1:35 p.m.•1470 views

Exploit for SQL Injection in Phpipam

CVE-2022-23046 The original discovery and manual PoC is from...

7.2CVSS7.1AI score0.48978EPSS

Exploits7

OSV•added 2022/01/19 9:15 p.m.•21 views

CVE-2022-23046

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php...

7.2CVSS7.1AI score

Exploits0References3

Prion•added 2022/01/19 9:15 p.m.•9 views

Cross site scripting

PhpIPAM v1.4.4 allows an authenticated admin user to inject persistent JavaScript code inside the "Site title" parameter while updating the site settings. The "Site title" setting is injected in several locations which triggers the XSS...

3.5CVSS5AI score0.00328EPSS

Exploits1References2Affected Software1

Prion•added 2022/01/19 9:15 p.m.•15 views

Code injection

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php...

6.5CVSS6.9AI score0.48978EPSS

Exploits7References3Affected Software1

Cvelist•added 2022/01/19 8:38 p.m.•12 views

CVE-2022-23046

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php...

7.2AI score0.48978EPSS

Exploits7References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by