On the 2nd of September 2025 phpIPAM was notified regarding an XSS vulnerability which allows an authenticated attacker to craft an HTML form containing javascript pseudo protocol tags which is then shown in the Instructions area of the Request IP page of the application. Versions up to and including v1.7.3 are potentially vulnerable, and a… Continue reading CVE-2025-61078: Cross-site scripting (XSS) vulnerability in Request IP form in phpIPAM v1.7.3
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
GLITCH ØNE 