CVE-2023-41580

CVE-2023-41580

Phpipam before v1.5.2 was discovered to contain a LDAP injection vulnerability via the dname parameter at /users/ad-search-result.php. This vulnerability allows attackers to enumerate arbitrary fields in the LDAP server and access sensitive data via a crafted POST request.

Source: CVE-2023-41580

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다