Cookie Consent by Free Privacy Policy Generator Aktuallisiere deine Cookie Einstellungen ๐Ÿ“Œ High CVE-2020-11060: Glpi-project GLPI


๐Ÿ“š High CVE-2020-11060: Glpi-project GLPI


๐Ÿ’ก Newskategorie: Sicherheitslรผcken
๐Ÿ”— Quelle: cxsecurity.com

In GLPI before 9.4.6, an attacker can execute system commands by abusing the backup functionality. Theoretically, this vulnerability can be exploited by an attacker without a valid account by using a CSRF. Due to the difficulty of the exploitation, the attack is only conceivable by an account having Maintenance privileges and the right to add WIFI networks. This is fixed in version 9.4.6. ...



๐Ÿ“Œ http://glpi.ville-somain.fr/glpi/kurd.html


๐Ÿ“ˆ 25.77 Punkte

๐Ÿ“Œ https://glpi.hu-ufsc.ebserh.gov.br/glpi-cmsg/kurd.html


๐Ÿ“ˆ 25.77 Punkte

๐Ÿ“Œ https://glpi.mairie-palaiseau.fr/glpi/


๐Ÿ“ˆ 25.77 Punkte

๐Ÿ“Œ http://glpi.paulista.pe.gov.br/glpi/kurd1943.html


๐Ÿ“ˆ 25.77 Punkte

๐Ÿ“Œ GLPI 0.90.4 Cross Site Request Forgery [CVE-2016-7507]


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ GLPI 0.90.4 cross site request forgery [CVE-2016-7507]


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ GLPI up to 9.5.3 resource injection [CVE-2021-21255]


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ GLPI up to 9.5.3 cross site scripting [CVE-2021-21325]


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-24876 | GLPI up to 10.0.0 Kanban cross site scripting (GHSA-33g2-m556-gccr)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-29250 | GLPI up to 10.0.0 Search Page sql injection (GHSA-5w33-4wrx-8hvw)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2015-7685 | GLPI up to 0.85.2 front/user.form.php _profiles_id access control (ID 5218)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2015-7684 | GLPI up to 0.85.2 File Upload files/_tmp/ privileges management (ID 5217)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-31082 | glpi-inventory-plugin up to 1.0.1 Package Deployment Task deploypackage.public.php sql injection (GHSA-q6m7-h6rj-5wmw)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-31056 | GLPI up to 10.0.1 Assistance form sql injection (GHSA-9q9x-7xxh-w4cg)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-31068 | GLPI up to 10.0.1 information disclosure (GHSA-g4hm-6vfr-q3wg)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-31061 | GLPI Login Page sql injection (GHSA-w2gc-v2gm-q7wq)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-35946 | GLPI up to 10.0.2 Plugin Controller front/plugin.form.php sql injection (GHSA-92q5-pfr8-r9r2)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-35947 | GLPI up to 10.0.2 API sql injection (GHSA-7p3q-cffg-c8xh)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-35945 | GLPI up to 10.0.2 Registration Key cross site scripting (GHSA-jrgw-cx24-56x5)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-31187 | GLPI up to 10.0.2 Global Search cross site scripting (GHSA-43j5-xhvj-9236)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-36112 | GLPI up to 10.0.2 Planning server-side request forgery (GHSA-rqgx-gqhp-x8vv)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-35914 | GLPI up to 10.0.2 htmlawed Module htmLawedTest.php code injection


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ #0daytoday #GLPI 10.0.2 Command Injection Exploit CVE-2022-35914 [remote #exploits #0day #Exploit]


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39371 | GLPI up to 10.0.3 cross site scripting (GHSA-w7wc-728f-6mm8)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39323 | GLPI up to 10.0.3 API REST user_token sql injection (GHSA-cp6q-9p4x-8hr9)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39234 | GLPI up to 10.0.3 Cookie session expiration (GHSA-pgcx-mc58-3gmg)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39276 | GLPI up to 10.0.3 RSS Feed server-side request forgery (GHSA-8vwg-7x42-7v6p)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39370 | GLPI up to 10.0.3 Debug Panel install/update.php access control (GHSA-6c2p-wgx9-vrjc)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39398 | tasklists up to 2.0.2 on GLPI Task Content cross site scripting (GHSA-3qv3-8393-777q)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-39181 | Reports Plugin on GLPI cross site scripting


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2023-22722 | GLPI up to 10.0.5 URL cross site scripting (GHSA-352j-wr38-493c)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2022-41941 | GLPI up to 10.0.5 Help Link cross site scripting (GHSA-qqqm-7h6v-7cf4)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2023-22725 | GLPI up to 10.0.5 cross site scripting (GHSA-f5g6-fxrw-pfj7)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2023-22724 | GLPI up to 10.0.5 RSS Feed cross site scripting (GHSA-x9g4-j85w-cmff)


๐Ÿ“ˆ 13.88 Punkte

๐Ÿ“Œ CVE-2023-28632 | GLPI up to 9.5.13/10.0.7 Forgotten Password privileges management (GHSA-7pwm-pg76-3q9x)


๐Ÿ“ˆ 13.88 Punkte











matomo