Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-31056

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected version...

9.8CVSS7.9AI score0.0858EPSS
Exploits3References2
0day.today
0day.today
added 2023/04/03 12:0 a.m.341 views

GLPI v10.0.2 - SQL Injection (Authentication Depends on Configuration) Vulnerability

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.2AI score0.0858EPSS
Exploits3
Packet Storm
Packet Storm
added 2023/04/03 12:0 a.m.377 views

GLPI 10.0.2 SQL Injection / Remote Code Execution

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Date of found: 11 Jun 2022 Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.4AI score0.0858EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/04/03 12:0 a.m.201 views

GLPI v10.0.2 - SQL Injection (Authentication Depends on Configuration)

ADVISORY INFORMATION Exploit Title: GLPI v10.0.2 - SQL Injection Authentication Depends on Configuration Date of found: 11 Jun 2022 Application: GLPI =10.0.0, 10.0.3 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link: https://github.com/glpi-project/glpi Advisory:...

9.8CVSS9.8AI score0.0858EPSS
Exploits3
Circl
Circl
added 2022/06/28 10:42 p.m.7 views

CVE-2022-31056

creationtimestamp| type| source ---|---|--- 2022-06-28 22:42:33+00:00| seen| https://t.me/cibsecurity/45327...

9.8CVSS8.5AI score0.0858EPSS
Exploits3References1
UbuntuCve
UbuntuCve
added 2022/06/28 6:15 p.m.46 views

CVE-2022-31056

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS7AI score0.0858EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2022/06/28 12:0 a.m.6 views

CVE-2022-31056 SQL injection with _actor parameter in GLPI

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS9.6AI score0.0858EPSS
Exploits3References2
CVE
CVE
added 2022/06/28 12:0 a.m.77 views

CVE-2022-31056

GLPI prior to 10.0.2 is affected by a SQL injection in the actor field across Help forms (Ticket/Change/Problem). The underlying issue is lack of validation of external input in those actor fields, enabling potentially unauthorized SQL commands. The vulnerability is fixed in GLPI version 10.0.2; ...

9.8CVSS9.6AI score0.0858EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2022/06/28 12:0 a.m.35 views

CVE-2022-31056 SQL injection with _actor parameter in GLPI

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS9.8AI score0.0858EPSS
Exploits3References2
Rows per page
Query Builder