Information on source package glpi

Available versions

ReleaseVersion
jessie0.84.8+dfsg.1-1

Open issues

BugjessieDescription
CVE-2024-50339vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2024-48912vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2024-47761vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2024-47760vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2024-47759vulnerableGLPI is a free Asset and IT management software package. An technician ...
CVE-2024-47758vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2024-45611vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2024-45610vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2024-45609vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-45608vulnerableGLPI is a free asset and IT management software package. An authentica ...
CVE-2024-43418vulnerableGLPI is a free asset and IT management software package. An unauthenti ...
CVE-2024-43417vulnerableGLPI is a free asset and IT management software package. An unauthenti ...
CVE-2024-43416vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2024-41679vulnerableGLPI is a free asset and IT management software package. An authentica ...
CVE-2024-41678vulnerableGLPI is a free asset and IT management software package. An unauthenti ...
CVE-2024-40638vulnerableGLPI is a free asset and IT management software package. An authentica ...
CVE-2024-38370vulnerableGLPI is a free asset and IT management software package. Starting in 9 ...
CVE-2024-37149vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2024-37148vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2024-37147vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2024-31456vulnerableGLPI is a Free Asset and IT Management Software package. Prior to 10.0 ...
CVE-2024-29889vulnerableGLPI is a Free Asset and IT Management Software package. Prior to 10.0 ...
CVE-2024-28241vulnerableThe GLPI Agent is a generic management agent. Prior to version 1.7.2, ...
CVE-2024-28240vulnerableThe GLPI Agent is a generic management agent. A vulnerability that onl ...
CVE-2024-27937vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-27930vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-27914vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-27756vulnerableGLPI through 10.0.12 allows CSV injection by an attacker who is able t ...
CVE-2024-27104vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-27098vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-27096vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2024-23645vulnerableGLPI is a Free Asset and IT Management Software package. A malicious U ...
CVE-2023-51446vulnerableGLPI is a Free Asset and IT Management Software package. When authenti ...
CVE-2023-46727vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-46726vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-43813vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-42802vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-34254vulnerableThe GLPI Agent is a generic management agent. Prior to version 1.5, if ...

Open unimportant issues

BugjessieDescription
CVE-2023-42462vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-42461vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41888vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41326vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41324vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41323vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41322vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41321vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-41320vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ...
CVE-2023-37278vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2023-36808vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-35940vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-35939vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-35924vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-34244vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-34107vulnerableGLPI is a free asset and IT management software package. Versions of t ...
CVE-2023-34106vulnerableGLPI is a free asset and IT management software package. Versions of t ...
CVE-2023-28852vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28849vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28838vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28639vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28636vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28634vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28633vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-28632vulnerableGLPI is a free asset and IT management software package. Starting in v ...
CVE-2023-23610vulnerableGLPI is a Free Asset and IT Management Software package. Versions prio ...
CVE-2023-22725vulnerableGLPI is a Free Asset and IT Management Software package. Versions 0.6. ...
CVE-2023-22724vulnerableGLPI is a Free Asset and IT Management Software package. Versions prio ...
CVE-2023-22722vulnerableGLPI is a Free Asset and IT Management Software package. Versions 9.4. ...
CVE-2023-22500vulnerableGLPI is a Free Asset and IT Management Software package. Versions 10.0 ...
CVE-2022-41941vulnerableGLPI is a Free Asset and IT Management Software package. Versions 10.0 ...
CVE-2022-39376vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39375vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39373vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39372vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39371vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39370vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39323vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39277vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39276vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39262vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-39234vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ...
CVE-2022-36112vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ...
CVE-2022-35947vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ...
CVE-2022-35946vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ...
CVE-2022-35945vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ...
CVE-2022-31187vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ...
CVE-2022-31143vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ...
CVE-2022-31082vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2022-31068vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2022-31061vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2022-31056vulnerableGLPI is a Free Asset and IT Management Software package, Data center m ...
CVE-2022-29250vulnerableGLPI is a Free Asset and IT Management Software package, that provides ...
CVE-2022-24876vulnerableGLPI is a Free Asset and IT Management Software package, that provides ...
CVE-2022-24869vulnerableGLPI is a Free Asset and IT Management Software package, that provides ...
CVE-2022-24868vulnerableGLPI is a Free Asset and IT Management Software package, that provides ...
CVE-2022-24867vulnerableGLPI is a Free Asset and IT Management Software package, that provides ...
CVE-2022-21720vulnerableGLPI is a free asset and IT management software package. Prior to vers ...
CVE-2022-21719vulnerableGLPI is a free asset and IT management software package. All GLPI vers ...
CVE-2021-43779vulnerableGLPI is an open source IT Asset Management, issue tracking system and ...
CVE-2021-39213vulnerableGLPI is a free Asset and IT management software package. Starting in v ...
CVE-2021-39211vulnerableGLPI is a free Asset and IT management software package. Starting in v ...
CVE-2021-39210vulnerableGLPI is a free Asset and IT management software package. In versions p ...
CVE-2021-39209vulnerableGLPI is a free Asset and IT management software package. In versions p ...
CVE-2021-21327vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2021-21326vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2021-21325vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2021-21324vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2021-21314vulnerableGLPI is open source software which stands for Gestionnaire Libre de Pa ...
CVE-2021-21313vulnerableGLPI is open source software which stands for Gestionnaire Libre de Pa ...
CVE-2021-21312vulnerableGLPI is open source software which stands for Gestionnaire Libre de Pa ...
CVE-2021-21258vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2021-21255vulnerableGLPI is an open-source asset and IT management software package that p ...
CVE-2021-3486vulnerableGLPi 9.5.4 does not sanitize the metadata. This way its possible to in ...
CVE-2020-27663vulnerableIn GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct ...
CVE-2020-27662vulnerableIn GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object ...
CVE-2020-26212vulnerableGLPI stands for Gestionnaire Libre de Parc Informatique and it is a Fr ...
CVE-2020-15226vulnerableIn GLPI before version 9.5.2, there is a SQL Injection in the API's se ...
CVE-2020-15217vulnerableIn GLPI before version 9.5.2, there is a leakage of user information t ...
CVE-2020-15177vulnerableIn GLPI before version 9.5.2, the `install/install.php` endpoint insec ...
CVE-2020-15176vulnerableIn GLPI before version 9.5.2, when supplying a back tick in input that ...
CVE-2020-15175vulnerableIn GLPI before version 9.5.2, the `pluginimage.send.php` endpoint allo ...
CVE-2020-15108vulnerableIn glpi before 9.5.1, there is a SQL injection for all usages of "Clon ...
CVE-2020-11062vulnerableIn GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in ...
CVE-2020-11060vulnerableIn GLPI before 9.4.6, an attacker can execute system commands by abusi ...
CVE-2020-11036vulnerableIn GLPI before version 9.4.6 there are multiple related stored XSS vul ...
CVE-2020-11035vulnerableIn GLPI after version 0.83.3 and before version 9.4.6, the CSRF tokens ...
CVE-2020-11034vulnerableIn GLPI before version 9.4.6, there is a vulnerability that allows byp ...
CVE-2020-11033vulnerableIn GLPI from version 9.1 and before version 9.4.6, any API user with R ...
CVE-2020-11032vulnerableIn GLPI before version 9.4.6, there is a SQL injection vulnerability f ...
CVE-2020-11031vulnerableIn GLPI before version 9.5.0, the encryption algorithm used is insecur ...
CVE-2020-5248vulnerableGLPI before before version 9.4.6 has a vulnerability involving a defau ...
CVE-2019-1010310vulnerableGLPI GLPI Product 9.3.1 is affected by: Frame and Form tags Injection ...
CVE-2019-1010307vulnerableGLPI GLPI Product 9.3.1 is affected by: Cross Site Scripting (XSS). Th ...
CVE-2019-14666vulnerableGLPI through 9.4.3 is prone to account takeover by abusing the ajax/au ...
CVE-2019-13240vulnerableAn issue was discovered in GLPI before 9.4.1. After a successful passw ...
CVE-2019-13239vulnerableinc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture.
CVE-2019-10233vulnerableTeclib GLPI before 9.4.1.1 is affected by a timing attack associated w ...
CVE-2019-10232vulnerableTeclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter ...
CVE-2019-10231vulnerableTeclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerab ...
CVE-2018-13049vulnerableThe constructSQL function in inc/search.class.php in GLPI 9.2.x throug ...
CVE-2018-7563vulnerableAn issue was discovered in GLPI through 9.2.1. The application is affe ...
CVE-2018-7562vulnerableA remote code execution issue was discovered in GLPI through 9.2.1. Th ...
CVE-2017-11475vulnerableGLPI before 9.1.5.1 has SQL Injection in the condition rule field, exp ...
CVE-2017-11474vulnerableGLPI before 9.1.5.1 has SQL Injection in the $crit variable in inc/com ...
CVE-2017-11329vulnerableGLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.ph ...
CVE-2017-11184vulnerableSQL injection exists in front/devicesoundcard.php in GLPI before 9.1.5 ...
CVE-2017-11183vulnerablefront/backup.php in GLPI before 9.1.5 allows remote authenticated admi ...
CVE-2016-7509vulnerableCross-site scripting (XSS) vulnerability in GLPI 0.90.4 allows remote ...
CVE-2016-7508vulnerableMultiple SQL injection vulnerabilities in GLPI 0.90.4 allow an authent ...
CVE-2016-7507vulnerableCross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows ...
CVE-2015-7685vulnerableGLPI before 0.85.3 allows remote authenticated users to create super-a ...
CVE-2015-7684vulnerableUnrestricted file upload in GLPI before 0.85.3 allows remote authentic ...
CVE-2014-9258vulnerableSQL injection vulnerability in ajax/getDropdownValue.php in GLPI befor ...
CVE-2014-8360vulnerableDirectory traversal vulnerability in inc/autoload.function.php in GLPI ...
CVE-2014-5032vulnerableGLPI before 0.84.7 does not properly restrict access to cost informati ...
CVE-2010-3692vulnerableDirectory traversal vulnerability in the callback function in client.p ...
CVE-2010-3691vulnerablePGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is ena ...
CVE-2010-3690vulnerableMultiple cross-site scripting (XSS) vulnerabilities in phpCAS before 1 ...
CVE-2010-2796vulnerableCross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when ...
CVE-2010-2795vulnerablephpCAS before 1.1.2 allows remote authenticated users to hijack sessio ...
CVE-2010-1618vulnerableCross-site scripting (XSS) vulnerability in the phpCAS client library ...

Resolved issues

BugDescription
TEMP-0513611-D1D676glpi sql injection
TEMP-0495542-A51430phpCAS XSS in final_uri; PHPCAS-52
CVE-2013-5696inc/central.class.php in GLPI before 0.84.2 does not attempt to make i ...
CVE-2013-2227GLPI 0.83.7 has Local File Inclusion in common.tabs.php.
CVE-2013-2226Multiple SQL injection vulnerabilities in GLPI before 0.83.9 allow rem ...
CVE-2013-2225inc/ticket.class.php in GLPI 0.83.9 and earlier allows remote attacker ...
CVE-2012-4003Multiple cross-site scripting (XSS) vulnerabilities in GLPI-PROJECT GL ...
CVE-2012-4002Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI b ...
CVE-2012-1105An Information Disclosure vulnerability exists in the Jasig Project ph ...
CVE-2012-1104A Security Bypass vulnerability exists in the phpCAS 1.2.2 library fro ...
CVE-2012-1037PHP remote file inclusion vulnerability in front/popup.php in GLPI 0.7 ...
CVE-2011-2720The autocompletion functionality in GLPI before 0.80.2 does not blackl ...
CVE-2008-7220Unspecified vulnerability in Prototype JavaScript framework (prototype ...
CVE-2007-3215PHPMailer 1.7, when configured to use sendmail, allows remote attacker ...
CVE-2007-2383The Prototype (prototypejs) framework before 1.5.1 RC3 exchanges data ...

Search for package or bug name: Reporting problems