glpi-project

210 tracked vulnerabilities.

CVE-2014-5032
GLPI < 0.84.6 - Unauthenticated Sensitive Information Exposure via Search Bar Cost Criteria
Apr 14, 2015
EPSS 0.00
CVE-2014-9258
GLPI < 0.85 - Authenticated SQL Injection via Dropdown Condition Parameter
Dec 19, 2014
EPSS 0.09
CVE-2013-2227 HIGH
GLPI 0.83.7 - Local File Inclusion via common.tabs.php
Nov 01, 2019
CVSS 7.5
EPSS 0.28
CVE-2013-2225
GLPI < 0.83.9 - Unauthenticated PHP Object Unserialization via _predefined_fields Parameter
May 27, 2014
EPSS 0.12
CVE-2013-2226
GLPI < 0.83.9 - SQL Injection via users_id_assign, filename, or table Parameter
May 14, 2014
EPSS 0.03
CVE-2013-5696
GLPI < 0.84.2 - Cross-Site Request Forgery and SQL Injection via Install Script
Sep 23, 2013
EPSS 0.64
CVE-2012-4003
GLPI < 0.83.3 - Cross-Site Scripting
Oct 09, 2012
EPSS 0.00
CVE-2012-4002
GLPI < 0.83.3 - Cross-Site Request Forgery
Oct 09, 2012
EPSS 0.00
CVE-2012-1037
GLPI 0.78-0.80.61 - Authenticated Remote Code Execution via sub_type Parameter
Jul 12, 2012
EPSS 0.01
CVE-2011-2720
GLPI < 0.80.2 - Exposure of Sensitive Information via Autocompletion
Aug 05, 2011
EPSS 0.01
Products
glpi 191 glpi-inventory-plugin 4 glpi_agent 3 glpi_inventory 3 GLPI 1 activity 1 barcode 1 cmdb 1 dashboard 1 manageentities 1 more_reporting 1 order 1 positions 1 reports 1
Quick Filters
Critical CVEs With Exploits In CISA KEV