CVE-2024-10724 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2, specifically in the Subnet NAT translations section when editing the…
Medium CVSS: 5.4

CVE-2024-10724

A stored cross-site scripting (XSS) vulnerability exists in phpipam/phpipam version 1.5.2, specifically in the Subnet NAT translations section when editing the Destination address. This vulnerability allows an attacker to execute malicious code. The issue is fixed in version 1.7.0.
Vendor
Phpipam
Product
Phpipam
CWE
CWE-79
Yayın Tarihi
2025-03-20 10:15:19
Güncelleme
2025-05-28 20:34:37
Source Identifier
security@huntr.dev
KEV Date Added
-

Kategoriler

CWE-79 Phpipam MEDIUM Phpipam 2025

Referanslar

https://github.com/phpipam/phpipam/commit/c1697bb6c4e4a6403d69c0868e1eb1040f98b731 https://huntr.com/bounties/0746e357-fcc7-44db-b8e7-857875c54999