phpipam 1.6 vulnerable to Cross Site Scripting (XSS)
CVE-2024-41354

Currently unrated

Key Information:

Vendor: phpipam
Status: PHPipam
Vendor: CVE Published:; 26 July 2024

What is CVE-2024-41354?

phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via /app/admin/widgets/edit.php

References

https://github.com/phpipam/phpipam/issues/4150

Timeline

Vulnerability published
Jul 26, 2024

.