Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-42318

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Starting in version 9.5.0 and prior to versions 10.0.25 and 11.0.7, low privilege users with access to...

7CVSS5.5AI score0.00291EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-52897

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a...

6.5CVSS5AI score0.00214EPSS
Exploits0References2
CNVD
CNVD
added 2025/08/01 12:0 a.m.4 views

GLPI Cross-Site Scripting Vulnerability (CNVD-2025-17793)

GLPI is a free asset and IT management software suite. A phishing attack vulnerability exists in GLPI versions 9.1.0 through 10.0.18, which stems from a planning feature that does not effectively filter malicious links sent by unauthenticated users. An attacker could use this vulnerability to...

6.5CVSS7AI score0.00214EPSS
Exploits0References1
OSV
OSV
added 2025/07/30 2:15 p.m.5 views

UBUNTU-CVE-2025-52897

GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a phishing attack from the planning feature. This is fixed in version 10.0.19...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/30 2:7 p.m.2 views

CVE-2025-52897 GLPI is vulnerable to XSS and open redirection attacks through planning feature

GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a phishing attack from the planning feature. This is fixed in version 10.0.19...

6.5CVSS6.4AI score0.00214EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/30 2:7 p.m.9 views

CVE-2025-52897 GLPI is vulnerable to XSS and open redirection attacks through planning feature

GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a phishing attack from the planning feature. This is fixed in version 10.0.19...

6.5CVSS0.00214EPSS
Exploits0References1
OSV
OSV
added 2025/07/30 2:7 p.m.6 views

CVE-2025-52897 GLPI is vulnerable to XSS and open redirection attacks through planning feature

GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a phishing attack from the planning feature. This is fixed in version 10.0.19...

6.5CVSS4.6AI score0.00214EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/30 12:0 a.m.5 views

GLPI 安全漏洞

GLPI is a free asset and IT management software suite. A phishing attack vulnerability exists in GLPI versions 9.1.0 through 10.0.18, which stems from a planning feature that does not effectively filter malicious links sent by unauthenticated users. An attacker could use this vulnerability to...

6.5CVSS6.8AI score0.00214EPSS
Exploits0References1
Rows per page
Query Builder