CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

265 matches found

Tenable Nessus•added 2026/06/03 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-40108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue ha...

7.1CVSS5.8AI score0.00268EPSS

Exploits0References2

NVD•added 2026/06/02 11:16 p.m.•14 views

CVE-2026-40108

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS0.00268EPSS

Exploits0References1

ATTACKERKB•added 2026/06/02 11:2 p.m.•10 views

CVE-2026-40108

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS5.7AI score0.00268EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/06/02 11:2 p.m.•35 views

CVE-2026-40108 GLPI Vulnerable to Stored XSS in ITIL Costs

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS0.00268EPSS

Exploits0References1

CVE•added 2026/06/02 11:2 p.m.•17 views

CVE-2026-40108

CVE-2026-40108 - GLPI Stored XSS in ITIL costs : Affects GLPI versions 11.0.0 through 11.0.6 where a technician can store an XSS payload in ITIL costs. The issue has been fixed in version 11.0.7. CVSS 4.0 base score is 7.1 (HIGH) with user interaction required and HIGH impact on confidentiality, ...

7.1CVSS5.7AI score0.00268EPSS

Exploits0References1

CNNVD•added 2026/06/02 12:0 a.m.•2 views

GLPI 跨站脚本漏洞

GLPI is an open-source IT and asset management software developed by GLPI. This software provides a comprehensive IT resource management interface, allowing you to create databases for managing various IT assets such as computers, monitors, servers, printers, network devices, telephones, and even...

7.1CVSS4.8AI score0.00268EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:39 a.m.•16 views

CVE-2022-35947

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions have been found to be vulnerable to a SQL injection attack which an attacker could...

10CVSS7.7AI score0.00903EPSS

Exploits0References1