Lucene search
+L

6 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-39277

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features,...

4.8CVSS6.8AI score0.00538EPSS
Exploits1References2
ALT Linux
ALT Linux
added 2022/11/04 12:0 a.m.146 views

Security fix for the ALT Linux 9 package glpi version 9.5.10-alt1

Nov. 4, 2022 Pavel Zilke 9.5.10-alt1 - New version 9.5.10 - This release fixes several security issues that has been recently discovered. Update is recommended! - Security fixes: + CVE-2022-39276 : Blind SSRF in RSS feeds and planning + CVE-2022-39372 : Stored XSS in user information +...

6.4AI score0.34251EPSS
Exploits3
NVD
NVD
added 2022/11/03 4:15 p.m.27 views

CVE-2022-39277

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. External links are not properly sanitized and can therefore be used for a Cross-Site Scripting XSS...

4.8CVSS0.00538EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/11/03 12:0 a.m.39 views

CVE-2022-39277 Cross-Site Scripting (XSS) in external links in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. External links are not properly sanitized and can therefore be used for a Cross-Site Scripting XSS...

4.5CVSS5.1AI score0.00538EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/11/03 12:0 a.m.7 views

CVE-2022-39277 Cross-Site Scripting (XSS) in external links in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. External links are not properly sanitized and can therefore be used for a Cross-Site Scripting XSS...

4.5CVSS6.1AI score0.00538EPSS
Exploits1References2
CVE
CVE
added 2022/11/03 12:0 a.m.75 views

CVE-2022-39277

CVE-2022-39277 affects GLPI (Gestionnaire Libre de Parc Informatique) where external links are not properly sanitized, enabling a Cross-Site Scripting (XSS) attack. The issue is mitigated by upgrading to GLPI 10.0.4, as noted in the description. According to the provided documents, the CVSS detai...

4.8CVSS4.9AI score0.00538EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder