PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpipam phpipam 1.4.4 |