Phpipam Vulnerabilities
Comprehensive security vulnerability database for Phpipam products
3
0
2
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2023-1211 | 7.2 | This vulnerability allows an attacker to manipulate the database of phpipam, potentially gaining access to sensitive information or altering data. It affects versions prior to 1.5.2 and requires the attacker to have the ability to send specially crafted requests to the application. | phpipamphpipam | Exploit Available | almost 3 years agoMar 7, 2023 |
| CVE-2023-0676 | 6.1 | This vulnerability allows an attacker to inject malicious scripts into web pages viewed by users of the phpipam application, potentially stealing sensitive information like session cookies. It occurs when users click on specially crafted links, and it affects versions prior to 1.5.1. | phpipamphpipam | Exploit Available | about 3 years agoFeb 4, 2023 |
| CVE-2021-35438 | 6.1 | This vulnerability allows an attacker to inject malicious scripts into the IP calculator feature of phpIPAM, which can then execute in the browser of anyone who visits the affected pages. To exploit this, the attacker needs to trick users into clicking on a specially crafted link that leads to the vulnerable pages. | phpipamphpipam | Theoretical | over 4 years agoJun 23, 2021 |
About Phpipam Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Phpipam products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.