phpIPAM Stored Cross-Site Scripting Vulnerability

A stored cross-site scripting vulnerability has been identified in phpIPAM version 1.5.2. This vulnerability allows attackers to inject malicious scripts into the 'Description' field of custom fields within the 'IP RELATED MANAGEMENT' section. The injected scripts are then executed when the data is viewed, potentially leading to data theft, account compromise, malware distribution, website defacement, content manipulation, and phishing attacks.

Impact

Exploitation of this vulnerability allows for stored cross-site scripting, where injected scripts are executed in the context of the user viewing the data. This can lead to various malicious outcomes, including data theft, account compromise, distribution of malware, website defacement, content manipulation, and phishing attacks.

Reproduction

To reproduce this vulnerability, navigate to the 'IP RELATED MANAGEMENT' section and select 'custom field'. Add a new custom field and inject a script payload into the 'field Description'. Once saved, the injected script will execute when the custom field is viewed.

Remediation

Users are advised to update phpIPAM to version 1.7.0 or later, where this vulnerability has been fixed.