9 matches found
VulnCheck KEV: CVE-2019-10232
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
CVE-2019-10232
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
Teclib GLPI SQL Injection Vulnerability
Teclib GLPI is an IT asset management solution. A SQL injection vulnerability exists in Teclib GLPI version 9.3.3 and earlier. A remote attacker can exploit this vulnerability to execute arbitrary SQL commands with the 'cycle' parameter of the /scripts/unlocktasks.php file...
CVE-2019-10232
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
CVE-2019-10232
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
UBUNTU-CVE-2019-10232
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
Sql injection
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
CVE-2019-10232
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlocktasks.php...
CVE-2019-10232
Teclib GLPI ≤ 9.3.3 is affected by an SQL injection in the cycle parameter of /scripts/unlock_tasks.php due to improper sanitization of user input, enabling retrieval of database records as per the Nuclei template and related advisories. The vulnerability is unauthenticated and impacts GLPI versi...