Lucene search
K

5 matches found

Circl
Circl
added 2022/04/21 8:26 p.m.6 views

CVE-2022-24869

creationtimestamp| type| source ---|---|--- 2022-04-21 20:26:54+00:00| seen| https://t.me/cibsecurity/41235...

5.4CVSS7.2AI score0.00758EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/04/21 5:15 p.m.53 views

CVE-2022-24869

GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to 10.0.0 one can use ticket's followups or setup login messages with a stylesheet link. This may allow for a cross site scripting attack...

5.4CVSS6.3AI score0.00758EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/04/21 5:0 p.m.29 views

CVE-2022-24869 Cross Site Scripting in GLPI

GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to 10.0.0 one can use ticket's followups or setup login messages with a stylesheet link. This may allow for a cross site scripting attack...

4.6CVSS5.5AI score0.00758EPSS
Exploits0References4
CVE
CVE
added 2022/04/21 5:0 p.m.103 views

CVE-2022-24869

CVE-2022-24869 affects GLPI releases prior to 10.0.0. The issue allows cross-site scripting via a stylesheet link injected in ticket followups or login messages, enabling an attacker to execute script in a user’s browser. Root cause: improper handling of stylesheet references in those areas. Impa...

5.4CVSS5.1AI score0.00758EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/21 5:0 p.m.6 views

CVE-2022-24869 Cross Site Scripting in GLPI

GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to 10.0.0 one can use ticket's followups or setup login messages with a stylesheet link. This may allow for a cross site scripting attack...

4.6CVSS5.3AI score0.00758EPSS
Exploits0References4
Rows per page
Query Builder