CNNVD-202512-959 Information

CNNVD ID

CNNVD-202512-959

Related CVE

CVE-2025-60912

• CNNVD Published: 2025-12-08

Description (Chinese)

phpIPAM是phpIPAM开源的一套开源的基于PHP和MySQL的IP地址管理应用程序（IPAM）。 phpIPAM v1.7.3版本存在安全漏洞，该漏洞源于数据库导出功能缺少CSRF保护，可能导致远程攻击者触发大型数据库转储下载。

Description (English)

phpIPAM is an open-source IP address management application (IPAM) based on PHP and MySQL. The security loophole in version phpIPAM v1.7.3 arises from the lack of CSRF protection for the database export function, which could trigger a large-scale database dump download by remote assailants.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

phpIPAM

Published

2025-12-08

Last Modified

2026-02-24

References

https://gist.github.com/amandrei/a8377d9b71c55156d22aaaf485463d15 https://github.com/phpipam/phpipam