CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2024-53434

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.10973EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 6:55 a.m.•4 views

CVE-2024-56801

Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 have a blind SQL injection vulnerability. Version 2.0.4 contains a patch for the vulnerability...

9.8CVSS7.8AI score0.10973EPSS

Exploits0References1

RedhatCVE•added 2025/05/21 8:26 p.m.•4 views

CVE-2002-1900

Cross-site scripting XSS vulnerability in Pinboard 1.0 allows remote attackers to inject arbitrary web script or HTML via tasklists...

4.3CVSS6AI score0.00297EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:35 p.m.•5 views

CVE-2022-39398

tasklists is a tasklists plugin for GLPI Kanban. Versions prior to 2.0.3 are vulnerable to Cross-site Scripting. Cross-site Scripting XSS - Create XSS in task content when add it. This issue is patched in version 2.0.3. There are no known workarounds...

8.8CVSS5.3AI score0.00321EPSS

Exploits0References1

NVD•added 2024/12/30 7:15 p.m.•10 views

CVE-2024-56801

Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 have a blind SQL injection vulnerability. Version 2.0.4 contains a patch for the vulnerability...

9.8CVSS0.10973EPSS

Exploits0References2

Prion•added 2024/12/30 7:15 p.m.•5 views

CVE-2024-56801

Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 have a blind SQL injection vulnerability. Version 2.0.4 contains a patch for the vulnerability...

0.10973EPSS

Exploits0References2

CVE•added 2024/12/30 6:10 p.m.•54 views

CVE-2024-56801

Tasklists for GLPI has a blind SQL injection vulnerability in versions prior to 2.0.4, fixed by the 2.0.4 patch. Some sources indicate the issue affects the /ajax/reorder.php endpoint. The CVE documents high impact (per CVSS data) but no exploit details are provided in the connected documents. Re...

9.8CVSS7.5AI score0.10973EPSS

Exploits0References2Affected Software1

Cvelist•added 2024/12/30 6:10 p.m.•17 views

CVE-2024-56801 Tasklists has Blind SQL Injection in /ajax/reorder.php

Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 have a blind SQL injection vulnerability. Version 2.0.4 contains a patch for the vulnerability...

6.9CVSS0.10973EPSS

Exploits0References2

Vulnrichment•added 2024/12/30 6:10 p.m.•6 views

CVE-2024-56801 Tasklists has Blind SQL Injection in /ajax/reorder.php

Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 have a blind SQL injection vulnerability. Version 2.0.4 contains a patch for the vulnerability...

6.9CVSS7.9AI score0.10973EPSS

Exploits0References2

OSV•added 2024/12/30 6:10 p.m.•5 views

CVE-2024-56801 Tasklists has Blind SQL Injection in /ajax/reorder.php

Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 have a blind SQL injection vulnerability. Version 2.0.4 contains a patch for the vulnerability...

6.9CVSS7.8AI score0.10973EPSS

Exploits0References4

CNNVD•added 2024/12/30 12:0 a.m.•1 views

InfotelGLPI tasklists SQL注入漏洞

InfotelGLPI tasklists is an InfotelGLPI plugin for use in GLPI, an open source helpdesk and asset tracking system that provides task management and Kanban functionality. An SQL injection vulnerability exists in InfotelGLPI tasklists versions prior to 2.0.4, which stems from the presence of a blin...

9.8CVSS7.6AI score0.10973EPSS

Exploits0References2

Positive Technologies•added 2024/12/30 12:0 a.m.•2 views

PT-2024-37075 · Glpi · Tasklists

Name of the Vulnerable Software and Affected Versions: Tasklists versions prior to 2.0.4 Description: The issue is related to a blind SQL injection vulnerability. Tasklists provides plugin tasklists for GLPI. Versions prior to 2.0.4 are affected. Recommendations: For versions prior to 2.0.4, upda...

9.8CVSS8.1AI score0.10973EPSS

Exploits0References7

NVD•added 2022/11/10 1:15 a.m.•7 views

CVE-2022-39398

8.8CVSS0.00321EPSS

Exploits0References2

Prion•added 2022/11/10 1:15 a.m.•9 views

Cross site scripting

5.8CVSS5.7AI score0.00321EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2022/11/10 12:0 a.m.•4 views

CVE-2022-39398 InfotelGLPI vulnerable to Cross-site Scripting

8.8CVSS7.9AI score0.00321EPSS

Exploits0References2

OSV•added 2022/11/10 12:0 a.m.•8 views

CVE-2022-39398 InfotelGLPI vulnerable to Cross-site Scripting

8.8CVSS5.8AI score0.00321EPSS

Exploits0References4

CVE•added 2022/11/10 12:0 a.m.•63 views

CVE-2022-39398

CVE-2022-39398 concerns the tasklists plugin for GLPI (Kanban). Versions prior to 2.0.3 are vulnerable to Cross-site Scripting (XSS) by creating XSS in task content when added. The issue is explicitly patched in version 2.0.3 ; no public workarounds are documented. Connected sources confirm the v...

8.8CVSS6.3AI score0.00321EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/11/10 12:0 a.m.•14 views

CVE-2022-39398 InfotelGLPI vulnerable to Cross-site Scripting

8.8CVSS8.1AI score0.00321EPSS

Exploits0References2

Positive Technologies•added 2022/11/10 12:0 a.m.•0 views

PT-2022-24957 · Tasklists · Tasklists

Name of the Vulnerable Software and Affected Versions: tasklists versions prior to 2.0.3 Description: The issue allows for Cross-site Scripting XSS where an attacker can create XSS in task content when adding it. There are no known workarounds for this issue. Recommendations: For versions prior t...

8.8CVSS5.8AI score0.00321EPSS

Exploits0References5

CNNVD•added 2022/11/09 12:0 a.m.•1 views

GLPI 跨站脚本漏洞

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner cartridg...

8.8CVSS6AI score0.00321EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by