Glpi-project

197 tracked vulnerabilities.

CVE-2026-25590 MEDIUM
GLPI Inventory Plugin <1.6.6 - XSS
Mar 03, 2026
CVSS 4.5
EPSS 0.00
CVE-2026-22821 MEDIUM
mreporting <1.9.4 - SQL Injection
Feb 12, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-23624 MEDIUM
GLPI <10.0.23-11.0.5 - Info Disclosure
Feb 04, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-22247 MEDIUM
Glpi < 11.0.5 - SSRF
Feb 04, 2026
CVSS 4.1
EPSS 0.00
CVE-2026-22044 MEDIUM
Glpi < 10.0.23 - SQL Injection
Feb 04, 2026
CVSS 6.5
EPSS 0.00
CVE-2025-66417 HIGH
GLPI <11.0.3 - SQL Injection
Jan 15, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-64516 HIGH
Glpi < 10.0.21 - Improper Access Control
Jan 15, 2026
CVSS 7.5
EPSS 0.00
CVE-2023-53943 MEDIUM
GLPI 9.5.7 - Info Disclosure
Dec 18, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-64520 MEDIUM
GLPI <10.0.21 - Info Disclosure
Dec 16, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-59935 MEDIUM
Glpi < 10.0.21 - XSS
Dec 16, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53357 MEDIUM
GLPI <10.0.18 - Privilege Escalation
Jul 30, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-53113 LOW
Glpi < 10.0.19 - Improper Access Control
Jul 30, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-53112 MEDIUM
Glpi < 10.0.19 - Improper Access Control
Jul 30, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-53111 MEDIUM
Glpi < 10.0.19 - Improper Access Control
Jul 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-53008 MEDIUM
Glpi < 10.0.19 - Insufficiently Protected Credentials
Jul 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-52897 MEDIUM
Glpi < 10.0.19 - Basic XSS
Jul 30, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-52567 LOW
Glpi < 10.0.19 - SSRF
Jul 30, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-27514 MEDIUM
GLPI <10.0.18 - Stored XSS
Jul 29, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-24801 HIGH
Glpi < 10.0.18 - Unrestricted File Upload
Mar 18, 2025
CVSS 8.5
EPSS 0.00
CVE-2025-24799 HIGHNUCLEI
Glpi < 10.0.18 - SQL Injection
Mar 18, 2025
CVSS 7.5
EPSS 0.68
CVE-2025-21619 CRITICAL
Glpi < 10.0.18 - SQL Injection
Mar 18, 2025
CVSS 9.8
EPSS 0.00
CVE-2025-25192 MEDIUM
GLPI <10.0.18 - Info Disclosure
Feb 25, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-23046 HIGH
GLPI <10.0.18 - Auth Bypass
Feb 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-23024 MEDIUM
Glpi < 10.0.18 - Improper Authorization
Feb 25, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-21627 MEDIUM
Glpi < 10.0.18 - XSS
Feb 25, 2025
CVSS 6.5
EPSS 0.01
Products
glpi 182 glpi_inventory 3 glpi_agent 3 dashboard 1 manageentities 1 more_reporting 1 order 1 positions 1 activity 1 reports 1 barcode 1 cmdb 1
Quick Filters
Critical CVEs With Exploits In CISA KEV