Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:57 a.m.7 views

CVE-2023-31056

CloverDX before 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x...

9.1CVSS6.9AI score0.0062EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-31056

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.16406EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-31056

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected version...

9.8CVSS7.9AI score0.0858EPSS
Exploits3References2
Circl
Circl
added 2025/05/23 2:6 p.m.5 views

CVE-2025-31056

creationtimestamp| type| source ---|---|--- 2025-05-23 14:06:40+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17389...

9.3CVSS4.8AI score0.00371EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2024/06/05 12:0 a.m.374 views

libxml2 security update

2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...

7.5CVSS7.7AI score0.01375EPSS
Exploits3
Circl
Circl
added 2023/04/24 7:14 a.m.5 views

CVE-2023-31056

creationtimestamp| type| source ---|---|--- 2023-04-24 07:14:04+00:00| seen| https://t.me/cibsecurity/62678...

9.1CVSS6.4AI score0.0062EPSS
Exploits0References1
NVD
NVD
added 2023/04/24 3:15 a.m.21 views

CVE-2023-31056

CloverDX before 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x...

9.1CVSS9.2AI score0.0062EPSS
Exploits0References1
CVE
CVE
added 2023/04/24 12:0 a.m.29 views

CVE-2023-31056

CVE-2023-31056 affects CloverDX prior to 5.17.3. The issue causes passwords to be written to the audit log when the audit log is enabled and single sign-on is not used, exposing credentials (information disclosure). Fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x. Exploitation details are no...

9.1CVSS6.4AI score0.0062EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/04/24 12:0 a.m.24 views

CVE-2023-31056

CloverDX before 5.17.3 writes passwords to the audit log in certain situations, if the audit log is enabled and single sign-on is not employed. The fixed versions are 5.15.4, 5.16.2, 5.17.3, and 6.0.x...

9.1CVSS9.3AI score0.0062EPSS
Exploits0References1
0day.today
0day.today
added 2023/04/03 12:0 a.m.339 views

GLPI v10.0.2 - SQL Injection (Authentication Depends on Configuration) Vulnerability

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.2AI score0.0858EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/04/03 12:0 a.m.374 views

GLPI 10.0.2 SQL Injection / Remote Code Execution

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Date of found: 11 Jun 2022 Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.4AI score0.0858EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/04/03 12:0 a.m.201 views

GLPI v10.0.2 - SQL Injection (Authentication Depends on Configuration)

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Date of found: 11 Jun 2022 Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.8AI score0.0858EPSS
Exploits3
Circl
Circl
added 2022/06/28 10:42 p.m.7 views

CVE-2022-31056

creationtimestamp| type| source ---|---|--- 2022-06-28 22:42:33+00:00| seen| https://t.me/cibsecurity/45327...

9.8CVSS8.5AI score0.0858EPSS
Exploits3References1
UbuntuCve
UbuntuCve
added 2022/06/28 6:15 p.m.44 views

CVE-2022-31056

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS7AI score0.0858EPSS
Exploits3References2
Cvelist
Cvelist
added 2022/06/28 12:0 a.m.34 views

CVE-2022-31056 SQL injection with _actor parameter in GLPI

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS9.8AI score0.0858EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2022/06/28 12:0 a.m.6 views

CVE-2022-31056 SQL injection with _actor parameter in GLPI

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS9.6AI score0.0858EPSS
Exploits3References2
CVE
CVE
added 2022/06/28 12:0 a.m.77 views

CVE-2022-31056

GLPI prior to 10.0.2 is affected by a SQL injection in the actor field across Help forms (Ticket/Change/Problem). The underlying issue is lack of validation of external input in those actor fields, enabling potentially unauthorized SQL commands. The vulnerability is fixed in GLPI version 10.0.2; ...

9.8CVSS9.6AI score0.0858EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2021/08/24 6:52 p.m.7 views

CVE-2021-31056

...

Exploits0
CVE
CVE
added 2021/08/24 6:52 p.m.25 views

CVE-2021-31056

This CVE-2021-31056 entry is rejected/not used and does not represent an active vulnerability.

7.4AI score
Exploits0
Rows per page
Query Builder