Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-64520

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Starting in version 9.1.0 and prior to version 10.0.21, an unauthorized user with an API access can rea...

6.5CVSS5.5AI score0.00186EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/08/02 8:23 p.m.3 views

CVE-2025-53357

GLPI, which stands for Gestionnaire Libre de Parc Informatique, is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions 0.78 through 10.0.18, a connected user can alter the reservations of another user. Thi...

5.4CVSS6.3AI score0.00164EPSS
Exploits0References1
OSV
OSVadded 2025/02/25 6:15 p.m.0 views

UBUNTU-CVE-2025-25192

GLPI is a free asset and IT management software package. Prior to version 10.0.18, a low privileged user can enable debug mode and access sensitive information. Version 10.0.18 contains a patch. As a workaround, one may delete the install/update.php file...

6.5CVSS5.8AI score0.00584EPSS
Exploits0References4
BDU FSTEC
BDU FSTECadded 2025/01/03 12:0 a.m.1 views

The vulnerability of the Fields plugin in the GLPI system for managing requests, incidents, and inventory of computer equipment arises from the lack of protection for the SQL query structure. This allows attackers to execute arbitrary SQL code.

The vulnerability of the Fields plugin in the GLPI system for managing requests, incidents, and inventory of computer equipment is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL code remotely...

7.7CVSS6AI score0.00462EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTECadded 2024/07/29 12:0 a.m.3 views

The vulnerability in the GLPI system’s handling of requests and incidents, related to improper neutralization of special elements used in SQL commands, allows an attacker to carry out an attack based on time, using SQL injections in the REST API user_token.

The vulnerability of the GLPI system for handling requests and incidents is related to the improper neutralization of certain special elements. Exploiting this vulnerability allows a malicious actor to scan server ports or services, and to carry out attacks based on timing, using SQL injections i...

10CVSS7.9AI score0.34251EPSS
Exploits0References3Affected Software2
OpenVAS
OpenVASadded 2013/08/20 12:0 a.m.30 views

Fedora Update for glpi FEDORA-2013-11315

Check for the Version of glpi OpenVAS Vulnerability Test Fedora Update for glpi FEDORA-2013-11315 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

7.5CVSS7.5AI score0.12976EPSS
Exploits6References2
Rows per page
Query Builder