Vulners
Lucene search
CVE-2023-41320 Account takeover via SQL Injection in UI layout preferences in GLPI
| Reporter | Title | Published | Views | Family All 78 |
|---|---|---|---|---|
 | Account takeover via SQL Injection in UI layout preferences in GLPI | 27 Sep 202300:00 | – | freebsd |
 | The vulnerability of the GLPI system’s request, incident, and asset inventory management processes, related to the improper elimination of special elements used in SQL commands, allows a hacker to gain access to the administrator account. | 13 Nov 202300:00 | – | bdu_fstec |
 | GLPISQL Injection Vulnerability | 27 Sep 202300:00 | – | cnnvd |
 | CVE-2023-41320 | 26 Sep 202321:15 | – | cve |
 | EUVD-2023-45833 | 3 Oct 202520:07 | – | euvd |
 | CVE-2023-41320 | 27 Sep 202315:19 | – | nvd |
 | CVE-2023-41320 Account takeover via SQL Injection in UI layout preferences in GLPI | 26 Sep 202321:15 | – | osv |
| UBUNTU-CVE-2023-41320 | 27 Sep 202315:19 | – | osv |
 | Sql injection | 27 Sep 202315:19 | – | prion |
 | PT-2022-20494 · Glpi +1 · Glpi +1 | 28 Jun 202200:00 | – | ptsecurity |
10
[
{
"vendor": "glpi-project",
"product": "glpi",
"versions": [
{
"version": ">= 10.0.0, < 10.0.10",
"status": "affected"
}
]
}
]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 Sep 2023 21:15Current
10High risk
Vulners AI Score10
CVSS 3.18.1
EPSS0.32099