cbcvebase.
CVE-2023-0678
published 2023-02-04

CVE-2023-0678: Missing Authorization in GitHub repository phpipam/phpipam prior to v1.5.1.

PriorityP351medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EXPLOIT
EPSS
37.30%
98.3th percentile
Missing Authorization in GitHub repository phpipam/phpipam prior to v1.5.1.

Affected

2 ranges
VendorProductVersion rangeFixed in
phpipamphpipam< 1.5.11.5.1
phpipamphpipam_phpipam>= unspecified < v1.5.1v1.5.1

Detection & IOCsextracted from sources · hover to see the quote

path/functions/scripts/find_full_subnets.php
urlhttps://github.com/phpipam/phpipam/commit/1960bd24e8a55796da066237cf11272c44bb1cc4
  • Detect unauthenticated GET requests to the find_full_subnets.php endpoint returning HTTP 200 with subnet data arrays
  • Identify exposed phpIPAM instances via Shodan using HTML title fingerprint
  • Identify exposed phpIPAM instances via FOFA using body fingerprint
  • Identify exposed phpIPAM instances via HTTP HTML fingerprint
  • ·Vulnerability affects phpIPAM versions prior to v1.5.1 only; the missing authorization check in find_full_subnets.php was patched in v1.5.1
  • ·The vulnerable script also fails to check whether it was invoked from the command line, broadening the attack surface to unauthenticated HTTP requests

CVSS provenance

nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.