Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2014-9258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the...

6.5CVSS6.3AI score0.03167EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2015-0017)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.03167EPSS
Exploits4References8
securityvulns
securityvulns
added 2015/05/12 12:0 a.m.72 views

[ MDVSA-2015:167 ] glpi

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2015:167 http://www.mandriva.com/en/support/security/ Package : glpi Date : March 30, 2015 Affected: Business Server 2.0 Problem Description: Updated glpi package fixes security vulnerabilities: Due to a bug in...

7.5CVSS7.1AI score0.03167EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.38 views

Mandriva Linux Security Advisory : glpi (MDVSA-2015:167)

Updated glpi package fixes security vulnerabilities : Due to a bug in GLPI before 0.84.7, a user without access to cost information can in fact see the information when selecting cost as a search criteria CVE-2014-5032. An issue in GLPI before 0.84.8 may allow arbitrary local files to be included...

7.5CVSS5.9AI score0.03167EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2015/01/05 12:0 a.m.32 views

Fedora Update for glpi FEDORA-2014-17497

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.03167EPSS
Exploits4References2
NVD
NVD
added 2014/12/19 3:59 p.m.13 views

CVE-2014-9258

SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the condition parameter...

6.5CVSS7.7AI score0.03167EPSS
Exploits4References10
UbuntuCve
UbuntuCve
added 2014/12/19 3:59 p.m.22 views

CVE-2014-9258

SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the condition parameter...

6.5CVSS6.2AI score0.03167EPSS
Exploits4References6
CVE
CVE
added 2014/12/19 3:0 p.m.74 views

CVE-2014-9258

GLPI vulnerable component: ajax/getDropdownValue.php in GLPI before 0.85.1. Root cause: SQL injection via the condition parameter allowing remote authenticated users to execute arbitrary SQL commands. Impact: partial confidentiality and integrity, as per CVSS context (base score 6.5, medium). Rem...

6.5CVSS7.8AI score0.03167EPSS
Exploits4References10Affected Software1
0day.today
0day.today
added 2014/12/18 12:0 a.m.108 views

GLPI 0.85 - Blind SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: GLPI 0.85 Blind SQL Injection Date: 28-11-2014 Exploit Author: Kacper Szurek - http://security.szurek.pl/ http://twitter.com/KacperSzurek Software Link: https://forge.indepnet.net/attachments/download/1899/glpi-0.85.tar.gz CVE:...

6.5CVSS0.2AI score0.03167EPSS
Exploits4
Exploit DB
Exploit DB
added 2014/12/15 12:0 a.m.53 views

GLPI 0.85 - Blind SQL Injection

Exploit Title: GLPI 0.85 Blind SQL Injection Date: 28-11-2014 Exploit Author: Kacper Szurek - http://security.szurek.pl/ http://twitter.com/KacperSzurek Software Link: https://forge.indepnet.net/attachments/download/1899/glpi-0.85.tar.gz CVE: CVE-2014-9258 Category: webapps 1. Description...

6.5CVSS6.4AI score0.03167EPSS
Exploits4
exploitpack
exploitpack
added 2014/12/15 12:0 a.m.92 views

GLPI 0.85 - Blind SQL Injection

GLPI 0.85 - Blind SQL Injection Exploit Title: GLPI 0.85 Blind SQL Injection Date: 28-11-2014 Exploit Author: Kacper Szurek - http://security.szurek.pl/ http://twitter.com/KacperSzurek Software Link: https://forge.indepnet.net/attachments/download/1899/glpi-0.85.tar.gz CVE: CVE-2014-9258 Category...

6.5CVSS0.2AI score0.03167EPSS
Exploits4
Rows per page
Query Builder