CVE-2024-41358

phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\import-export\import-load-data.php.

Published Date :

Last Modified :

Source :

The following products are affected by CVE-2024-41358 vulnerability.

Vendors	Products
Phpipam	Phpipam

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-41358.

URL	Resource
https://github.com/MarkLee131/awesome-web-pocs/blob/main/CVE-2024-41358.md
https://github.com/phpipam/phpipam/commit/3986ac1acfbf47ddd4fe05cd158aaf2cacafe36b
https://github.com/phpipam/phpipam/commit/b131fb99c9ada95b38e4cb2749ac599e42fad3d9
https://github.com/phpipam/phpipam/issues/4148

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact