4.8CVSS
5AI Score
0.001EPSS
A cross-site request forgery (CSRF) vulnerability in the Activity module 6.x-1.x for Drupal.
8.8CVSS
8.7AI Score
0.001EPSS
The Activity plugin before 3.1.1 for GLPI allows reading local files via directory traversal in the front/cra.send.php file parameter.
7.5CVSS
7.5AI Score
0.002EPSS