phpipam
phpipam copied to clipboard
phpipam
phpIPAM Outdated and Vulnerable JavaScript Libraries
Hello @GaryAllan,
There are a few CVEs related to the mentioned libraries:
| JS Library/Version | CVE-ID | Vulnerability Type | CVSS Rating |
|---|---|---|---|
| bootstrap 3.3.7 | CVE-2019-8331 | Cross-site Scripting (XSS) | 6.5 |
| CVE-2018-20676 | Cross-site Scripting (XSS) | 6.5 | |
| CVE-2018-20677 | Cross-site Scripting (XSS) | 6.5 | |
| CVE-2018-14040 | Cross-site Scripting (XSS) | 6.5 | |
| CVE-2016-10735 | Cross-site Scripting (XSS) | 6.5 | |
| jquery-ui 1.12.1 | CVE-2022-31160 | Cross-site Scripting (XSS) | 5.4 |
| CVE-2021-41184 | Cross-site Scripting (XSS) | 6.1 | |
| CVE-2021-41182 | Cross-site Scripting (XSS) | 6.1 | |
| CVE-2021-41183 | Cross-site Scripting (XSS) | 6.1 |
It would be appreciated to know if they're false positives.
Best regards, Pedro Noronha
