4 matches found
Mageia: Security Advisory (MGASA-2015-0017)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[ MDVSA-2015:167 ] glpi
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:167 http://www.mandriva.com/en/support/security/ Package : glpi Date : March 30, 2015 Affected: Business Server 2.0 Problem Description: Updated glpi package fixes security vulnerabilities: Due to a bug in...
CVE-2014-8360
CVE-2014-8360 applies to GLPI prior to version 0.84.8, where a directory traversal vulnerability in inc/autoload.function.php can be exploited to include and execute arbitrary local files via a crafted itemtype parameter to getItemForItemtype (as demonstrated in ajax/common.tabs.php). This allows...
Mandriva Linux Security Advisory : glpi (MDVSA-2015:167)
Updated glpi package fixes security vulnerabilities : Due to a bug in GLPI before 0.84.7, a user without access to cost information can in fact see the information when selecting cost as a search criteria CVE-2014-5032. An issue in GLPI before 0.84.8 may allow arbitrary local files to be included...