cve/2019/CVE-2019-16692.md

CVE-2019-16692

Description

phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/filter-result.php table parameter when action=add is used.

POC

Reference

• http://packetstormsecurity.com/files/154651/phpIPAM-1.4-SQL-Injection.html

Github

• https://github.com/0xT11/CVE-POC
• https://github.com/developer3000S/PoC-in-GitHub
• https://github.com/hectorgie/PoC-in-GitHub
• https://github.com/kkirsche/CVE-2019-16692
• https://github.com/superlink996/chunqiuyunjingbachang