Lucene search
+L

4 matches found

UbuntuCve
UbuntuCve
added 2022/09/14 6:15 p.m.26 views

CVE-2022-31187

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions were found to not properly neutralize HTML tags in the global search context. Users...

6.8CVSS6.1AI score0.00611EPSS
Exploits0References3
CVE
CVE
added 2022/09/14 6:0 p.m.67 views

CVE-2022-31187

GLPI (Gestionnaire Libre de Parc Informatique) is affected by CVE-2022-31187 due to insufficient neutralization of HTML tags in the global search context. The public advisory states that affected GLPI versions require upgrading to 10.0.3 to resolve the issue, or, if upgrading is not possible, dis...

6.8CVSS5.9AI score0.00611EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/09/14 6:0 p.m.32 views

CVE-2022-31187 Stored Cross Site Scripting (XSS) through global search in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions were found to not properly neutralize HTML tags in the global search context. Users...

6.8CVSS6.8AI score0.00611EPSS
Exploits0References2
OSV
OSV
added 2022/09/14 6:0 p.m.23 views

CVE-2022-31187 Stored Cross Site Scripting (XSS) through global search in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions were found to not properly neutralize HTML tags in the global search context. Users...

6.8CVSS5.7AI score0.00611EPSS
Exploits0References4
Rows per page
Query Builder