Filter
AND

Versions

10.0.0
30
0.65
10
0.70
10
0.68
7
0.80
7
0.83
7
9.5.0
7
0.68.1
6
0.78
6
0.78.1
6
0.78.2
6
0.78.3
6
0.78.4
6
0.78.5
6
0.80.1
6
0.42
5
0.5
5
0.5-rc1
5
0.5-rc2
5
0.51
5
0.51a
5
0.6
5
0.6-rc1
5
0.6-rc2
5
0.6-rc3
5
0.65-rc1
5
0.65-rc2
5
0.68-rc1
5
0.68-rc2
5
0.68-rc3
5
0.68.2
5
0.68.3
5
0.70-rc1
5
0.70-rc2
5
0.70-rc3
5
0.70.1
5
0.70.2
5
0.71
5
0.71.1
5
0.71.1-rc1
5
0.71.1-rc2
5
0.71.1-rc3
5
0.71.2
5
0.71.3
5
0.71.4
5
0.71.5
5
0.71.6
5
0.72
5
0.72-rc1
5
0.72-rc2
5
0.72-rc3
5
0.72.1
5
0.72.2
5
0.72.3
5
0.72.4
5
0.80.2
5
0.80.3
5
0.80.4
5
0.80.5
5
0.80.6
5
0.80.61
5
0.83.1
5
0.83.2
5
0.20
4
0.21
4
0.30
4
0.31
4
0.40
4
0.41
4
0.80.7
4
0.83.3
4
0.83.7
4
9.1
4
9.3.0
4
0.60
3
0.83.31
3
0.83.4
3
0.83.5
3
0.83.6
3
0.83.8
3
0.84
3
0.85
3
0.90.4
3
9.1.4
3
9.4.0
3
0.50
2
0.83.9
2
0.85.2
2
10.0.0-beta
2
10.0.0-rc1
2
10.0.0-rc2
2
10.0.0-rc3
2
9.1.5.0
2
9.2.0
2
9.2.1
2
9.3.1
2
0.83.91
1
0.84.1
1
0.84.6
1
0.84.7
1
0.90
1
10.0.2
1
10.0.7
1
10.0.8
1
9.1.0
1
9.1.1
1
9.2
1
9.3.3
1
9.4.1.1
1
9.4.3
1
9.4.5
1
9.4.6
1
9.5.3
1
9.5.4
1

GLPI-PROJECT GLPITeclib GLPI Remote Code Execution Vulnerability

critical
9.8
Exploited
First published (updated )
CVE-2022-35914

GLPI-PROJECT GLPIGLPI allows account takeover via SQL Injection in AJAX scripts

high
8.8
First published (updated )
CVE-2024-40638

GLPI-PROJECT GLPIGLPI has multiple reflected XSS

medium
6.5
First published (updated )
CVE-2024-41678

GLPI-PROJECT GLPIAuthenticated SQL injection in ticket form

high
8.8
First published (updated )
CVE-2024-41679

GLPI-PROJECT GLPIReflected XSS in Software form

medium
6.5
First published (updated )
CVE-2024-43417

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIGLPI has multiple reflected XSS

medium
6.5
First published (updated )
CVE-2024-43418

GLPI-PROJECT GLPIGLPI has an Authenticated SQL Injection

high
8.8
First published (updated )
CVE-2024-45608

GLPI-PROJECT GLPIGLPI has a Reflected XSS in /front/stat.graph.php

medium
6.5
First published (updated )
CVE-2024-45609

GLPI-PROJECT GLPIGLPI has a reflected XSS in ajax/cable.php

medium
6.5
First published (updated )
CVE-2024-45610

GLPI-PROJECT GLPIGLPI has a stored XSS at src/RSSFeed.php

medium
5.7
First published (updated )
CVE-2024-45611

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIGLPI SQL injection through inventory agent request

critical
9.8
First published (updated )
CVE-2023-46727

GLPI-PROJECT GLPIGLPI vulnerable to unauthorized access to User data

medium
6.5
First published (updated )
CVE-2023-34106

GLPI-PROJECT GLPIGLPI vulnerable to unauthorized access to KnowbaseItem data

medium
6.5
First published (updated )
CVE-2023-34107

GLPI-PROJECT GLPIGLPI vulnerable to reflected XSS in search pages

medium
6.5
First published (updated )
CVE-2023-34244

GLPI-PROJECT GLPIGLPI vulnerable to SQL injection via inventory agent request

critical
9.8
First published (updated )
CVE-2023-35924

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIGLPI vulnerable to unauthorized access to Dashboard data

high
8.1
First published (updated )
CVE-2023-35939

GLPI-PROJECT GLPIGLPI vulnerable to unauthenticated access to Dashboard data

high
7.5
First published (updated )
CVE-2023-35940

GLPI-PROJECT GLPIGLPI vulnerable to SQL injection through Computer Virtual Machine information

critical
9.8
First published (updated )
CVE-2023-36808

GLPI-PROJECT GLPIGLPI vulnerable to SQL injection via dashboard administration

critical
9.1
First published (updated )
CVE-2023-37278

GLPI-PROJECT GLPISensitive fields enumeration through API in GLPI

medium
6.5
First published (updated )
CVE-2023-41321

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIPrivilege Escalation from technician to super-admin in GLPI

high
8.8
First published (updated )
CVE-2023-41322

GLPI-PROJECT GLPIUsers login enumeration by unauthenticated user in GLPI

medium
5.3
First published (updated )
CVE-2023-41323

GLPI-PROJECT GLPIAccount takeover via SQL Injection in UI layout preferences in GLPI

critical
9.8
First published (updated )
CVE-2023-41320

GLPI-PROJECT GLPIAccount takeover through API in GLPI

high
8.8
First published (updated )
CVE-2023-41324

GLPI-PROJECT GLPIAccount takeover via Kanban feature in GLPI

high
8.8
First published (updated )
CVE-2023-41326

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

GLPI-PROJECT GLPIPhishing through a login page malicious URL in GLPI

medium
5.4
First published (updated )
CVE-2023-41888

GLPI-PROJECT GLPISQL injection in ITIL actors in GLPI

critical
9.8
First published (updated )
CVE-2023-42461

GLPI-PROJECT GLPIFile deletion through document upload process in GLPI

critical
9.1
First published (updated )
CVE-2023-42462

GLPI-PROJECT GLPICode Injection

medium
6.5
First published (updated )
CVE-2012-1037

GLPI-PROJECT GLPICSRF, SQL Injection

medium
6.8
First published (updated )
CVE-2013-5696

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203