Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-21720

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Prior to version 9.5.7, an entity administrator is capable of retrieving normally inaccessible data via...

4.9CVSS5.8AI score0.01134EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2022/01/28 11:15 a.m.15 views

CVE-2022-21720

GLPI is a free asset and IT management software package. Prior to version 9.5.7, an entity administrator is capable of retrieving normally inaccessible data via SQL injection. Version 9.5.7 contains a patch for this issue. As a workaround, disabling the Entities update right prevents exploitation...

4.9CVSS6.3AI score0.01134EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/01/28 10:15 a.m.38 views

CVE-2022-21720 SQL injection using custom CSS administration form in GLPI

GLPI is a free asset and IT management software package. Prior to version 9.5.7, an entity administrator is capable of retrieving normally inaccessible data via SQL injection. Version 9.5.7 contains a patch for this issue. As a workaround, disabling the Entities update right prevents exploitation...

4.9CVSS6.1AI score0.01134EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/01/28 10:15 a.m.8 views

CVE-2022-21720 SQL injection using custom CSS administration form in GLPI

GLPI is a free asset and IT management software package. Prior to version 9.5.7, an entity administrator is capable of retrieving normally inaccessible data via SQL injection. Version 9.5.7 contains a patch for this issue. As a workaround, disabling the Entities update right prevents exploitation...

4.9CVSS5.7AI score0.01134EPSS
Exploits0References3
Rows per page
Query Builder