Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

OSV
OSVadded 2025/07/30 2:15 p.m.0 views

UBUNTU-CVE-2025-52567

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In versions 0.84 through 10.0.18, usage of RSS feeds or external calendars when planning is subject to SSRF exploit. The previous security patches provided...

5CVSS5.8AI score0.00127EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/07/30 12:0 a.m.1 views

GLPI 代码问题漏洞

GLPI is an open source IT and asset management software from GLPI Open Source. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and ink...

5CVSS4.7AI score0.00127EPSS
Exploits0References2
Patchstack
Patchstackadded 2023/07/18 12:0 a.m.9 views

WordPress Date Picker by Input WP – Sync bookings with external Calendars (.ics) Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)

Software Date Picker by Input WP – Sync bookings with external Calendars .ics Type Plugin Vulnerable versions = 2.2 Fixed in 2.3 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

6.2AI score
Exploits0References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/11/03 12:0 a.m.3 views

PT-2022-7400 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions prior to 10.0.4 Description: The issue is related to the usage of RSS feeds or an external calendar in planning, which is subject to a Server-Side Request Forgery SSRF exploit. If a remote script returns a redirect response, the...

10CVSS6.5AI score0.94395EPSS
Exploits40References204
Positive Technologies
Positive Technologiesadded 2022/09/14 12:0 a.m.3 views

PT-2022-7406 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions prior to 10.0.3 Description: The issue is related to the usage of RSS feeds or external calendar in planning, which is subject to Server-Side Request Forgery SSRF exploit. This allows an attacker to scan server ports or services...

10CVSS6.4AI score0.94395EPSS
Exploits40References203
CNNVD
CNNVDadded 2022/09/14 12:0 a.m.1 views

GLPI 代码问题漏洞

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner cartridg...

5.8CVSS7AI score0.00178EPSS
Exploits0References4
Patchstack
Patchstackadded 2022/02/28 12:0 a.m.11 views

WordPress Date Picker by Input WP – Sync bookings with external Calendars (.ics) plugin <= 2.1 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress Date Picker by Input WP – Sync bookings with external Calendars .ics plugin versions = 2.1. Solution Update the WordPress Date Picker by Input WP – Sync bookings with external Calendars .ics plugin to the latest available...

2.5AI score
Exploits0References2Affected Software1
Rows per page
Query Builder