6 matches found
Exploit for Unrestricted Upload of File with Dangerous Type in Glpi-Project Glpi
CVE-2025-24801 PoC for GLPI RCE This repository contains a pr...
Exploit for Unrestricted Upload of File with Dangerous Type in Glpi-Project Glpi
CVE-2025-24801 This exploit uses CVE-2025-24801 to get Remote...
CVE-2025-24801
GLPI is a free asset and IT management software package. An authenticated user can upload and force the execution of .php files located on the GLPI server. This vulnerability is fixed in 10.0.18...
CVE-2025-24801 GLPI allows authenticated remote code execution
GLPI is a free asset and IT management software package. An authenticated user can upload and force the execution of .php files located on the GLPI server. This vulnerability is fixed in 10.0.18...
CVE-2025-24801
GLPI (asset/IT management software) has CVE-2025-24801 where an authenticated user can upload and force execution of PHP files on the GLPI server. Root cause described in the Nessus/NASL entry aligns with improper handling of uploaded files. Fixed in GLPI version 10.0.18. Remediation is to upgrad...
CVE-2025-24801
creationtimestamp| type| source ---|---|--- 2025-03-12 10:58:14+00:00| seen| https://bsky.app/profile/r-netsec-bot.bsky.social/post/3lk6geieskt2j 2025-03-12 11:30:36+00:00| seen| https://bsky.app/profile/buherator.bsky.social/post/3lk6i6evc3a2c 2025-03-12 12:09:32+00:00| seen|...