Lucene search
K

64 matches found

EUVD
EUVD
added 2025/12/19 4:35 p.m.7 views

EUVD-2025-204565

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. Prior to version 1.1.2, in certain conditions database write access must first be obtained through another vulnerability or misconfiguration...

6.4CVSS6.5AI score0.0026EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/19 12:0 a.m.7 views

Database inventory plugin 代码问题漏洞

Database inventory plugin is an open source database management plugin for GLPI Project Plugins. A code issue vulnerability exists in versions of Database inventory plugin prior to 1.1.2, which stems from insecure storage of user-controlled data and could lead to the instantiation of arbitrary PH...

6.4CVSS7AI score0.0026EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/19 12:0 a.m.7 views

PT-2025-52493

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. Prior to version 1.1.2, in certain conditions database write access must first be obtained through another vulnerability or misconfiguration...

6.4CVSS7AI score0.0026EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/11/27 11:6 p.m.7 views

CVE-2025-53360

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. In versions prior to 1.0.3, any authenticated user could send requests to agents. This issue has been patched in version 1.0.3...

4.3CVSS6.6AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/11/18 5:16 p.m.8 views

CVE-2025-53360

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. In versions prior to 1.0.3, any authenticated user could send requests to agents. This issue has been patched in version 1.0.3...

4.3CVSS0.00256EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/11/18 4:12 p.m.3 views

CVE-2025-53360 pluginsGLPI's Database Inventory Plugin allows any authenticated user to send agent requests

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. In versions prior to 1.0.3, any authenticated user could send requests to agents. This issue has been patched in version 1.0.3...

4.3CVSS6.3AI score0.00256EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/18 4:12 p.m.10 views

CVE-2025-53360 pluginsGLPI's Database Inventory Plugin allows any authenticated user to send agent requests

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. In versions prior to 1.0.3, any authenticated user could send requests to agents. This issue has been patched in version 1.0.3...

4.3CVSS0.00256EPSS
Exploits0References4
CVE
CVE
added 2025/11/18 4:12 p.m.10 views

CVE-2025-53360

CVE-2025-53360 affects the pluginsGLPI Database Inventory Plugin for GLPI. Prior to version 1.0.3, any authenticated user could send requests to the Teclib’ inventory agents, effectively exposing/invoking inventory actions on workstation databases. The issue is mitigated by upgrading to version 1...

4.3CVSS6.3AI score0.00256EPSS
Exploits0References4
OSV
OSV
added 2025/11/18 4:12 p.m.3 views

CVE-2025-53360 pluginsGLPI's Database Inventory Plugin allows any authenticated user to send agent requests

pluginsGLPI's Database Inventory Plugin "manages" the Teclib' inventory agents in order to perform an inventory of the databases present on the workstation. In versions prior to 1.0.3, any authenticated user could send requests to agents. This issue has been patched in version 1.0.3...

4.3CVSS6.6AI score0.00256EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.5 views

Database inventory plugin 访问控制错误漏洞

Database inventory plugin is an open source database management plugin for GLPI Project Plugins. An access control error vulnerability exists in Database inventory plugin versions prior to 1.0.3, which originates from the fact that any authenticated user can send requests to the agent...

4.3CVSS6.4AI score0.00256EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/05 9:6 p.m.8 views

CVE-2025-32786

The GLPI Inventory Plugin handles network discovery, inventory, software deployment, and data collection for GLPI agents. Versions 1.5.0 and below are vulnerable to SQL Injection. This issue is fixed in version 1.5.1...

7.5CVSS7.4AI score0.06576EPSS
Exploits0References1
NVD
NVD
added 2025/11/04 9:15 p.m.6 views

CVE-2025-32786

The GLPI Inventory Plugin handles network discovery, inventory, software deployment, and data collection for GLPI agents. Versions 1.5.0 and below are vulnerable to SQL Injection. This issue is fixed in version 1.5.1...

7.5CVSS0.06576EPSS
Exploits0References3
CVE
CVE
added 2025/11/04 8:18 p.m.35 views

CVE-2025-32786

CVE-2025-32786 affects the GLPI Inventory Plugin for GLPI agents. Versions 1.5.0 and earlier are vulnerable to SQL Injection due to improper handling of user input; this is fixed in version 1.5.1. The issue, documented across multiple sources, indicates the vulnerability arises from unvalidated/e...

7.5CVSS7AI score0.06576EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/04 8:18 p.m.9 views

CVE-2025-32786 GLPI Inventory Plugin is Vulnerable to Unauthenticated SQL Injection

The GLPI Inventory Plugin handles network discovery, inventory, software deployment, and data collection for GLPI agents. Versions 1.5.0 and below are vulnerable to SQL Injection. This issue is fixed in version 1.5.1...

7.5CVSS0.06576EPSS
Exploits0References3
OSV
OSV
added 2025/11/04 8:18 p.m.8 views

CVE-2025-32786 GLPI Inventory Plugin is Vulnerable to Unauthenticated SQL Injection

The GLPI Inventory Plugin handles network discovery, inventory, software deployment, and data collection for GLPI agents. Versions 1.5.0 and below are vulnerable to SQL Injection. This issue is fixed in version 1.5.1...

7.5CVSS7.5AI score0.06576EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.6 views

PT-2025-45042

Name of the Vulnerable Software and Affected Versions GLPI Inventory Plugin versions 1.5.0 and below Description The GLPI Inventory Plugin, which manages network discovery, inventory, software deployment, and data collection for GLPI agents, contains a SQL Injection issue. The plugin is vulnerabl...

7.5CVSS7.7AI score0.06576EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/11/04 12:0 a.m.6 views

GLPI Inventory Plugin SQL注入漏洞

GLPI Inventory Plugin is an open source plugin for GLPI France. It is used to handle various types of tasks for GLPI agents. A SQL injection vulnerability exists in GLPI Inventory Plugin 1.5.0 and prior versions, which stems from user input that is not adequately validated and escaped, and could...

7.5CVSS7.7AI score0.06576EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-17022

Malware in sbrugna...

8CVSS8.1AI score0.01097EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-14843

Malicious code in bioql PyPI...

8.2CVSS6.4AI score0.00408EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-6436

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00316EPSS
Exploits0References2
Rows per page
Query Builder