PT-2024-15819 · Phpipam · Phpipam
Published
2024-11-15
·
Updated
2024-11-19
·
CVE-2024-0787
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
phpIPAM version 1.5.1
Description
The issue allows an attacker to bypass the IP block mechanism, enabling brute force attacks on user accounts, including the admin account, by utilizing the 'X-Forwarded-For' header. This is due to the
get user ip() function in 'class.Common.php' checking for and using the 'X-Forwarded-For' header instead of 'REMOTE ADDR'. The vulnerability enables attackers to perform brute force attacks on user accounts.Recommendations
For phpIPAM version 1.5.1, update to version 1.7.0 to resolve the issue. As a temporary workaround, consider modifying the
get user ip() function in 'class.Common.php' to prioritize 'REMOTE ADDR' over the 'X-Forwarded-For' header to prevent IP block bypass.Exploit
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Phpipam