CVE-2022-23046

Summary

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php

Affected Software

VendorProductVersion RangeStatus
n/aPhpIPAM1.4.4affected

Weaknesses

  • SQL injection

ADP Enrichment

CVE Program Container

Additional References

References