Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-1779

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When dynamic templates are used OTRSTicketForms, admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects:...

4.9CVSS5.4AI score0.00995EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/11/15 12:0 a.m.2 views

GLPI SQL注入漏洞

GLPI is an open source IT and asset management software from an individual developer. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner and i...

8.8CVSS5.2AI score0.00524EPSS
Exploits0References1
OSV
OSVadded 2022/06/28 6:15 p.m.3 views

UBUNTU-CVE-2022-31056

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms Ticket/Change/Problem permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and...

9.8CVSS7.2AI score0.07126EPSS
Exploits3References3
Positive Technologies
Positive Technologiesadded 2022/06/28 12:0 a.m.11 views

PT-2022-20494 · Glpi +1 · Glpi +1

Name of the Vulnerable Software and Affected Versions: GLPI versions prior to 10.0.2 Description: The issue affects all assistance forms, including Ticket, Change, and Problem, allowing sql injection on the actor fields. This has been resolved in version 10.0.2. Recommendations: For versions prio...

10CVSS7.3AI score0.99521EPSS
Exploits27References156
OSV
OSVadded 2021/02/08 11:15 a.m.2 views

CVE-2020-1779

When dynamic templates are used OTRSTicketForms, admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior...

4.9CVSS5.8AI score0.00995EPSS
Exploits0References1
OSV
OSVadded 2021/02/08 11:15 a.m.2 views

UBUNTU-CVE-2020-1779

When dynamic templates are used OTRSTicketForms, admin can use OTRS tags which are not masked properly and can reveal sensitive information. This issue affects: OTRS AG OTRSTicketForms 6.0.x version 6.0.40 and prior versions; 7.0.x version 7.0.29 and prior versions; 8.0.x version 8.0.3 and prior...

4.9CVSS5.8AI score0.00995EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/02/08 12:0 a.m.6 views

OTRS AG OTRSTicketForms 信息泄露漏洞

OTRS AG OTRSTicketForms is a functional add-on from OTRS Germany. Using it it is possible to display different ticket masks and forms in the agent and external interfaces, depending on which dynamic fields are relevant for the customer request. An information disclosure vulnerability exists in OT...

4.9CVSS5.8AI score0.00995EPSS
Exploits0References2
Rows per page
Query Builder