Lucene search

K
Glpi-projectGlpi

11 matches found

CVE
CVE
added 2022/11/03 3:15 p.m.71 views

CVE-2022-39323

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Time based attack using a SQL injection in api REST user_token. This issue has been patched, please upg...

9.8CVSS9AI score0.01382EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.62 views

CVE-2022-39375

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Users may be able to create a public RSS feed to inject malicious code in dashboards of other users. Th...

5.4CVSS5.4AI score0.00087EPSS
CVE
CVE
added 2022/11/03 2:15 p.m.61 views

CVE-2022-39276

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Usage of RSS feeds or an external calendar in planning is subject to SSRF exploit. In case a remote scr...

5.3CVSS4.9AI score0.00097EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.57 views

CVE-2022-39277

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. External links are not properly sanitized and can therefore be used for a Cross-Site Scripting (XSS) at...

4.8CVSS4.9AI score0.00093EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.55 views

CVE-2022-39370

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Connected users may gain access to debug panel through the GLPI update script. This issue has been patc...

4.3CVSS5AI score0.0006EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.55 views

CVE-2022-39372

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Authenticated users may store malicious code in their account information. This issue has been patched,...

5.4CVSS5.1AI score0.00112EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.51 views

CVE-2022-39376

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Users may be able to inject custom fields values in mailto links. This issue has been patched, please u...

6.5CVSS5.2AI score0.00081EPSS
CVE
CVE
added 2022/11/03 2:15 p.m.47 views

CVE-2022-39234

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Deleted/deactivated user could continue to use their account as long as its cookie is valid. This issue...

8.8CVSS6.4AI score0.00129EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.47 views

CVE-2022-39371

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Script related HTML tags in assets inventory information are not properly neutralized. This issue has b...

7.5CVSS6AI score0.00087EPSS
CVE
CVE
added 2022/11/03 2:15 p.m.46 views

CVE-2022-39262

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package, GLPI administrator can define rich-text content to be displayed on login page. The displayed content is can contains malicious code that can be used to steal credentials. This issue has...

5.2CVSS5.5AI score0.00071EPSS
CVE
CVE
added 2022/11/03 4:15 p.m.39 views

CVE-2022-39373

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Administrator may store malicious code in entity name. This issue has been patched, please upgrade to v...

4.9CVSS5.2AI score0.00071EPSS