6 matches found
GLPI Glpiinventory 1.0.1 Local File Inclusion
ADVISORY INFORMATION Exploit Title: GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion Date of found: 11 Jun 2022 Application: GLPI Glpiinventory = 1.0.1 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link:...
GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion Vulnerability
ADVISORY INFORMATION Exploit Title: GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion Date of found: 11 Jun 2022 Application: GLPI Glpiinventory = 1.0.1 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link:...
GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion
ADVISORY INFORMATION Exploit Title: GLPI Glpiinventory v1.0.1 - Unauthenticated Local File Inclusion Date of found: 11 Jun 2022 Application: GLPI Glpiinventory = 1.0.1 Author: Nuri Çilengir Vendor Homepage: https://glpi-project.org/ Software Link:...
CVE-2022-31062 Unauthenticated Local File Inclusion
Impact A plugin public script can be used to read content of system files. Patches Upgrade to version 1.0.2. Workarounds b/deploy/index.php file can be deleted if deploy feature is not used...
CVE-2022-31062 Unauthenticated Local File Inclusion
Impact A plugin public script can be used to read content of system files. Patches Upgrade to version 1.0.2. Workarounds b/deploy/index.php file can be deleted if deploy feature is not used...
CVE-2022-31062
GLPI Inventory Plugin for GLPI is affected by an unauthenticated Local File Inclusion vulnerability in versions before 1.0.2. A public script in the plugin can be used to read system files (root cause: public file/script exposed under b/deploy/index.php path). Impact is reading contents of system...