Lucene search
K

6 matches found

Snyk
Snyk
added 2026/05/18 7:10 p.m.8 views

Infinite loop

Overview Microsoft.AspNetCore.App.Runtime.win-x86 is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Infinite loop in the FormDataReader.ProcessFormKeys...

8.7CVSS5.8AI score0.0243EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/03 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-34244

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an...

6.5CVSS6AI score0.00511EPSS
Exploits0References2
OSV
OSV
added 2023/07/05 8:15 p.m.2 views

UBUNTU-CVE-2023-34244

GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the crafted link. Users should upgrade to version 10.0.8...

6.5CVSS6.4AI score0.00511EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/05 12:0 a.m.4 views

PT-2023-24768 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions 9.4.0 through 10.0.7 Description: GLPI is a free asset and IT management software package. A malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the...

10CVSS6.8AI score0.99628EPSS
Exploits27References156
Positive Technologies
Positive Technologies
added 2023/07/05 12:0 a.m.5 views

PT-2023-4273 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions 0.80 through 10.0.7 Description: The issue is related to a lack of protection against SQL injection attacks in the GLPI system, which manages IT assets and inventory. This can be exploited by a remote attacker to execute arbitra...

10CVSS7.9AI score0.99628EPSS
Exploits27References158
Positive Technologies
Positive Technologies
added 2023/05/07 12:0 a.m.6 views

PT-2023-3798 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions 9.5.0 through 10.0.7 Description: The issue is related to inadequate access control in the GLPI system, which can be exploited by a remote attacker to modify or view dashboard data. This is due to an incorrect rights check on a...

10CVSS6.8AI score0.99628EPSS
Exploits27References159
Rows per page
Query Builder