CVE-2021-35438

CVE-2021-35438

EPSS 1.0%

phpIPAM 1.4.3 allows Reflected XSS via app/dashboard/widgets/ipcalc-result.php and app/tools/ip-calculator/result.php of the IP calculator.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2021-35438.md https://github.com/phpipam/phpipam/issues/3351