Glpi-project

Glpi

179 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2022-39372

  • EPSS 0.29%
  • Veröffentlicht 03.11.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:18:09

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Authenticated users may store malicious code in their ...

4.8

CVE-2022-39373

  • EPSS 0.3%
  • Veröffentlicht 03.11.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:18:09

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Administrator may store malicious code in entity name....

5.4

CVE-2022-39375

  • EPSS 0.29%
  • Veröffentlicht 03.11.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:18:09

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Users may be able to create a public RSS feed to injec...

6.5

CVE-2022-39376

  • EPSS 0.22%
  • Veröffentlicht 03.11.2022 16:15:10
  • Zuletzt bearbeitet 21.11.2024 07:18:10

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Users may be able to inject custom fields values in `m...

4.8

CVE-2022-39277

Exploit
  • EPSS 0.29%
  • Veröffentlicht 03.11.2022 16:15:09
  • Zuletzt bearbeitet 21.11.2024 07:17:56

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. External links are not properly sanitized and can ther...

9.8

CVE-2022-39323

  • EPSS 1.21%
  • Veröffentlicht 03.11.2022 15:15:12
  • Zuletzt bearbeitet 21.11.2024 07:18:02

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Time based attack using a SQL injection in api REST us...

5.3

CVE-2022-39276

Exploit
  • EPSS 0.18%
  • Veröffentlicht 03.11.2022 14:15:23
  • Zuletzt bearbeitet 21.11.2024 07:17:56

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Usage of RSS feeds or an external calendar in planning...

4.8

CVE-2022-39262

Exploit
  • EPSS 0.32%
  • Veröffentlicht 03.11.2022 14:15:12
  • Zuletzt bearbeitet 21.11.2024 07:17:54

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package, GLPI administrator can define rich-text content to be displayed on login page. The displayed content is can contains malicious code that...

8.8

CVE-2022-39234

  • EPSS 0.18%
  • Veröffentlicht 03.11.2022 14:15:10
  • Zuletzt bearbeitet 21.11.2024 07:17:50

GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Deleted/deactivated user could continue to use their a...

9.8

CVE-2022-35914

Warnung Exploit
  • EPSS 94.4%
  • Veröffentlicht 19.09.2022 16:15:11
  • Zuletzt bearbeitet 03.11.2025 15:52:33

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection.