Recently modified vulnerabilities for vendor "glpi"

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Software

GLPIGLPI allows unauthorized access to debug mode

GLPI Inventory PluginGLPI Inventory plugin has Improper Access Control Vulnerability

GLPIGLPI allows authenticated remote code execution

GLPIGLPI allows unauthenticated SQL injection through the inventory endpoint

GLPIGLPI allows SQL injection through the rules configuration

Never miss a vulnerability like this again

GLPI Inventory PluginGLPI Inventory Plugin vulnerable to reflective Cross-site Scripting

Pre-authentication SQL injection to RCE in GLPI (CVE-2025-24799/CVE-2025-24801)

GLPIGLPI: Plugins are disabled accessing one page

GLPIGLPI Cross-site Scripting vulnerability

GLPIGLPI vulnerable to exposure of sensitive information in the `status.php` endpoint

Never miss a vulnerability like this again

GLPIGLPI index.php redirect

GLPIGLPI vulnerable to unauthorized authentication by email using the OAuthIMAP plugin

GLPIGLPI allows API document download without rights

GLPIGLPI vulnerable to account takeover without privilege escalation through the API

GLPIGLPI contains an SQL injection through the saved searches

Never miss a vulnerability like this again

GLPIGLPI vulnerable to account takeover via the password reset feature

GLPIGLPI vulnerable to account takeover via API

GLPIGLPI has a stored XSS via document upload

GLPI AgentGLPI-Agent's MSI package installation permits local users to change Agent configuration

GLPICode Injection

Never miss a vulnerability like this again

Company

Resources

Contact