Phpipam · Phpipam · CVE-2021-35438
Name of the Vulnerable Software and Affected Versions:
phpIPAM version 1.4.3
Description:
The issue allows for Reflected XSS via the IP calculator, specifically through the `app/dashboard/widgets/ipcalc-result.php` and `app/tools/ip-calculator/result.php` endpoints.
Recommendations:
For phpIPAM version 1.4.3, update to a newer version that contains a fix for this issue.