Lucene search
K

5 matches found

ALT Linux
ALT Linux
added 2022/11/04 12:0 a.m.145 views

Security fix for the ALT Linux 9 package glpi version 9.5.10-alt1

Nov. 4, 2022 Pavel Zilke 9.5.10-alt1 - New version 9.5.10 - This release fixes several security issues that has been recently discovered. Update is recommended! - Security fixes: + CVE-2022-39276 : Blind SSRF in RSS feeds and planning + CVE-2022-39372 : Stored XSS in user information +...

6.4AI score0.34251EPSS
Exploits3
UbuntuCve
UbuntuCve
added 2022/11/03 4:15 p.m.9 views

CVE-2022-39372

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Authenticated users may store malicious code in their account information. This issue has been patche...

5.4CVSS6.9AI score0.00408EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/03 12:0 a.m.36 views

CVE-2022-39372 Stored Cross-Site Scripting (XSS) in user information in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Authenticated users may store malicious code in their account information. This issue has been patche...

3.5CVSS5.8AI score0.00408EPSS
Exploits0References1
CVE
CVE
added 2022/11/03 12:0 a.m.74 views

CVE-2022-39372

GLPI, CVE-2022-39372, affects GLPI before 10.0.13 (updates also mention 10.0.15 as a fix level). Connected sources document multiple vulnerabilities in GLPI’s components across versions prior to 10.0.13/10.0.15, including: SQL injection in search/map/search-related features, SSRF, and cross‑site ...

5.4CVSS5.1AI score0.00408EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/11/03 12:0 a.m.9 views

CVE-2022-39372 Stored Cross-Site Scripting (XSS) in user information in GLPI

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Authenticated users may store malicious code in their account information. This issue has been patche...

3.5CVSS5.6AI score0.00408EPSS
Exploits0References1
Rows per page
Query Builder