Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-39210

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free Asset and IT management software package. In versions prior to 9.5.6, the cookie used to store the autologin cookie when a user uses the remember...

6.5CVSS7AI score0.00982EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 8:42 p.m.4 views

CVE-2021-39210

GLPI is a free Asset and IT management software package. In versions prior to 9.5.6, the cookie used to store the autologin cookie when a user uses the "remember me" feature is accessible by scripts. A malicious plugin that could steal this cookie would be able to use it to autologin. This issue ...

6.5CVSS6.9AI score0.00982EPSS
Exploits0References1
ALT Linux
ALT Linuxadded 2021/10/18 12:0 a.m.31 views

Security fix for the ALT Linux 9 package glpi version 9.5.6-alt1

9.5.6-alt1 built Oct. 18, 2021 Pavel Zilke in task 287044 Oct. 12, 2021 Pavel Zilke - New version 9.5.6 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-39211 : Disclosure of GLPI and server informations in telemetry endpoint + CVE-2021-39210 : Autologin cookie...

6.8CVSS7AI score0.04446EPSS
Exploits0
Prion
Prionadded 2021/09/15 5:15 p.m.22 views

Design/Logic Flaw

GLPI is a free Asset and IT management software package. In versions prior to 9.5.6, the cookie used to store the autologin cookie when a user uses the "remember me" feature is accessible by scripts. A malicious plugin that could steal this cookie would be able to use it to autologin. This issue ...

3.5CVSS6.1AI score0.00982EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2021/09/15 5:15 p.m.1 views

UBUNTU-CVE-2021-39210

GLPI is a free Asset and IT management software package. In versions prior to 9.5.6, the cookie used to store the autologin cookie when a user uses the "remember me" feature is accessible by scripts. A malicious plugin that could steal this cookie would be able to use it to autologin. This issue ...

6.5CVSS7.2AI score0.00982EPSS
Exploits0References5
CVE
CVEadded 2021/09/15 4:40 p.m.57 views

CVE-2021-39210

What is affected: GLPI

6.5CVSS6.3AI score0.00982EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2021/09/15 12:0 a.m.5 views

PT-2021-22463 · Glpi +1 · Glpi +1

Name of the Vulnerable Software and Affected Versions: GLPI versions prior to 9.5.6 Description: The issue affects the autologin cookie used when the "remember me" feature is enabled, making it accessible to scripts. A malicious plugin could exploit this to steal the cookie and use it for...

10CVSS6.3AI score0.99521EPSS
Exploits32References128
Rows per page
Query Builder