CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

264 matches found

Tenable Nessus•added 2026/06/03 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-40108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue ha...

7.1CVSS5.8AI score0.00057EPSS

Exploits0References2

NVD•added 2026/06/02 11:16 p.m.•10 views

CVE-2026-40108

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS0.00057EPSS

Exploits0References1

CVE•added 2026/06/02 11:2 p.m.•14 views

CVE-2026-40108

CVE-2026-40108 - GLPI Stored XSS in ITIL costs : Affects GLPI versions 11.0.0 through 11.0.6 where a technician can store an XSS payload in ITIL costs. The issue has been fixed in version 11.0.7. CVSS 4.0 base score is 7.1 (HIGH) with user interaction required and HIGH impact on confidentiality, ...

7.1CVSS5.7AI score0.00057EPSS

Exploits0References1

Cvelist•added 2026/06/02 11:2 p.m.•33 views

CVE-2026-40108 GLPI Vulnerable to Stored XSS in ITIL Costs

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS0.00057EPSS

Exploits0References1

ATTACKERKB•added 2026/06/02 11:2 p.m.•9 views

CVE-2026-40108

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, a technician can store an XSS payload in a ITIL costs. This issue has been fixed in version 11.0.7...

7.1CVSS5.7AI score0.00057EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/01/09 8:39 a.m.•15 views

CVE-2022-35947

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affected versions have been found to be vulnerable to a SQL injection attack which an attacker could...

10CVSS7.7AI score0.00307EPSS

Exploits0References1