Filter
AND

Versions

10.0.0
7
9.5.0
4
0.83
3
9.3.0
3
0.83.7
2
0.90.4
2
9.1
2
0.70
1
0.83.1
1
0.83.2
1
0.83.3
1
0.83.31
1
0.83.4
1
0.83.5
1
0.83.6
1
0.83.8
1
0.84.7
1
0.85
1
10.0.0-beta
1
10.0.0-rc1
1
10.0.0-rc2
1
10.0.0-rc3
1
9.1.0
1
9.1.5.0
1
9.2.0
1
9.2.1
1
9.3.3
1
9.4.0
1
9.4.1.1
1
9.4.3
1
9.4.5
1

GLPI-PROJECT GLPIGLPI allows account takeover via SQL Injection in AJAX scripts

high
8.8
First published (updated )
CVE-2024-40638

GLPI-PROJECT GLPIAuthenticated SQL injection in ticket form

high
8.8
First published (updated )
CVE-2024-41679

GLPI-PROJECT GLPIGLPI has an Authenticated SQL Injection

high
8.8
First published (updated )
CVE-2024-45608

GLPI-PROJECT GLPIGLPI vulnerable to unauthorized access to Dashboard data

high
8.1
First published (updated )
CVE-2023-35939

GLPI-PROJECT GLPIGLPI vulnerable to unauthenticated access to Dashboard data

high
7.5
First published (updated )
CVE-2023-35940

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIPrivilege Escalation from technician to super-admin in GLPI

high
8.8
First published (updated )
CVE-2023-41322

GLPI-PROJECT GLPIAccount takeover through API in GLPI

high
8.8
First published (updated )
CVE-2023-41324

GLPI-PROJECT GLPIAccount takeover via Kanban feature in GLPI

high
8.8
First published (updated )
CVE-2023-41326

GLPI-PROJECT GLPISQL Injection

high
7.5
First published (updated )
CVE-2013-2226

GLPI-PROJECT GLPIInput Validation

high
7.5
First published (updated )
CVE-2013-2227

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIPath Traversal

high
7.5
First published (updated )
CVE-2014-8360

GLPI-PROJECT GLPICSRF

high
8
First published (updated )
CVE-2016-7507

GLPI-PROJECT GLPISQL Injection

high
7.5
First published (updated )
CVE-2016-7508

GLPI-PROJECT GLPISQL Injection

high
8.8
First published (updated )
CVE-2017-11475

GLPI-PROJECT GLPISQL Injection

high
8.8
First published (updated )
CVE-2018-13049

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIRace Condition, Malicious File Upload

high
7.5
First published (updated )
CVE-2018-7562

GLPI-PROJECT GLPIInfoleak

high
8.8
First published (updated )
CVE-2019-14666

Fusioninventory FusioninventoryThe FusionInventory plugin before 1.4 for GLPI 9.3.x and before 1.1 for GLPI 9.4.x mishandles sendXM…

high
7.5
First published (updated )
CVE-2019-10477

GLPI-PROJECT GLPITeclib GLPI before 9.4.1.1 is affected by a timing attack associated with a cookie.

high
8.1
First published (updated )
CVE-2019-10233

GLPI-PROJECT GLPIAny GLPI CalDAV calendars is read-only for every authenticated user

high
7.7
First published (updated )
CVE-2020-26212

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPISQL injection in GLPI

high
8.7
First published (updated )
CVE-2020-15176

GLPI-PROJECT GLPIUnauthenticated Stored XSS in GLPI

high
8
First published (updated )
CVE-2020-15177

GLPI-PROJECT GLPISQL Injection in glpi

high
7.1
First published (updated )
CVE-2020-15108

GLPI-PROJECT GLPIInsecure encryption algorithm in GLPI

high
7.8
First published (updated )
CVE-2020-11031

GLPI-PROJECT GLPIXSS in GLPI

high
7.6
First published (updated )
CVE-2020-11036

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPISQL injection on addme_observer and addme_assign in GLPI

high
7.6
First published (updated )
CVE-2020-11032

Fedoraproject FedoraAble to read any token through API user endpoint in GLPI

high
7.2
First published (updated )
CVE-2020-11033

GLPI-PROJECT GLPIPublic GLPIKEY can be used to decrypt any data in GLPI

high
7.2
First published (updated )
CVE-2020-5248

GLPI-PROJECT GLPIBypassable CSRF protection

high
8.8
First published (updated )
CVE-2021-39209

GLPI-PROJECT GLPIIP restriction on GLPI API Bypass with custom header injection

high
8.8
First published (updated )
CVE-2021-39213

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203