Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:39 a.m.16 views

CVE-2022-35914

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection...

9.8CVSS7.2AI score0.99628EPSS
Exploits13References1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.5 views

The vulnerability of the htmlawed module in the GLPI system for job requests, incidents, and computer equipment inventory allows a hacker to inject arbitrary PHP code.

The vulnerability of the htmlawed module in the GLPI system for job requests, incidents, and computer equipment inventory management is related to incorrect code generation. Exploiting this vulnerability allows a malicious actor to inject arbitrary PHP code remotely...

10CVSS8.3AI score0.99628EPSS
Exploits13References3Affected Software2
Redos
Redos
added 2025/03/03 12:0 a.m.6 views

ROS-20250303-02

Vulnerability in the htmlawed module of the GLPI computer hardware request, incident and inventory system is related to incorrect input validation in /vendor/htmlawed/htmlawed/htmlawed/htmLawedTest.php. Exploitation of the of the vulnerability could allow an attacker acting remotely to inject...

9.8CVSS7.1AI score0.99628EPSS
Exploits13
NVD
NVD
added 2022/09/19 4:15 p.m.25 views

CVE-2022-35914

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection...

9.8CVSS0.99628EPSS
Exploits13References8
CNNVD
CNNVD
added 2022/09/19 12:0 a.m.4 views

GLPI 注入漏洞

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner cartridg...

9.8CVSS8.7AI score0.99628EPSS
Exploits13References9
ATTACKERKB
ATTACKERKB
added 2022/09/19 12:0 a.m.53 views

CVE-2022-35914

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS2.2AI score0.99628EPSS
In wildExploits13References8
Vulnrichment
Vulnrichment
added 2022/09/19 12:0 a.m.9 views

CVE-2022-35914

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection...

9.8AI score0.99628EPSS
Exploits13References7
Positive Technologies
Positive Technologies
added 2016/08/25 12:0 a.m.7 views

PT-2022-23020

Name of the Vulnerable Software and Affected Versions GLPI versions prior to 10.0.3 Description The htmlawed module in GLPI contains an issue related to improper input validation and code generation management. This allows a remote attacker to perform PHP code injection via the endpoint...

9.8CVSS8.2AI score0.99628EPSS
Exploits13References36
Rows per page
Query Builder