Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-34244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an...

6.5CVSS6AI score0.00446EPSS
Exploits0References2
NVD
NVD
added 2023/07/05 8:15 p.m.26 views

CVE-2023-34244

GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the crafted link. Users should upgrade to version 10.0.8...

6.5CVSS6.3AI score0.00446EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/07/05 8:15 p.m.18 views

CVE-2023-34244

GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the crafted link. Users should upgrade to version 10.0.8...

6.5CVSS6.3AI score0.00446EPSS
Exploits0References2
CVE
CVE
added 2023/07/05 7:22 p.m.132 views

CVE-2023-34244

CVE-2023-34244 (GLPI) affects GLPI, a free asset/IT management software. The initial description documents an unauthenticated user crafting a link that triggers a reflected XSS when an authenticated user opens it, with a patch released in version 10.0.8. Connected sources detail additional GLPI i...

6.5CVSS6.1AI score0.00446EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/05 7:22 p.m.23 views

CVE-2023-34244 GLPI vulnerable to reflected XSS in search pages

GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the crafted link. Users should upgrade to version 10.0.8...

6.5CVSS6AI score0.00446EPSS
Exploits0References4
Rows per page
Query Builder