CVE-2022-23045

Posted on by admin

CVE-2022-23045

PhpIPAM v1.4.4 allows an authenticated admin user to inject persistent JavaScript code inside the "Site title" parameter while updating the site settings. The "Site title" setting is injected in several locations which triggers the XSS.

Source: CVE-2022-23045

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다