| Bug | jessie | Description |
|---|
| CVE-2024-28241 | vulnerable | The GLPI Agent is a generic management agent. Prior to version 1.7.2, ... |
| CVE-2024-28240 | vulnerable | The GLPI Agent is a generic management agent. A vulnerability that onl ... |
| CVE-2024-27937 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2024-27930 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2024-27914 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2024-27756 | vulnerable | GLPI through 10.0.12 allows CSV injection by an attacker who is able t ... |
| CVE-2024-27104 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2024-27098 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2024-27096 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2024-23645 | vulnerable | GLPI is a Free Asset and IT Management Software package. A malicious U ... |
| CVE-2023-51446 | vulnerable | GLPI is a Free Asset and IT Management Software package. When authenti ... |
| CVE-2023-46727 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-46726 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-43813 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-42802 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-34254 | vulnerable | The GLPI Agent is a generic management agent. Prior to version 1.5, if ... |
| CVE-2021-21327 | vulnerable | GLPI is an open-source asset and IT management software package that p ... |
| CVE-2021-21326 | vulnerable | GLPI is an open-source asset and IT management software package that p ... |
| CVE-2021-21325 | vulnerable | GLPI is an open-source asset and IT management software package that p ... |
| CVE-2021-21324 | vulnerable | GLPI is an open-source asset and IT management software package that p ... |
| CVE-2021-21314 | vulnerable | GLPI is open source software which stands for Gestionnaire Libre de Pa ... |
| CVE-2021-21313 | vulnerable | GLPI is open source software which stands for Gestionnaire Libre de Pa ... |
| CVE-2021-21312 | vulnerable | GLPI is open source software which stands for Gestionnaire Libre de Pa ... |
| CVE-2021-21258 | vulnerable | GLPI is an open-source asset and IT management software package that p ... |
| CVE-2021-21255 | vulnerable | GLPI is an open-source asset and IT management software package that p ... |
| CVE-2021-3486 | vulnerable | GLPi 9.5.4 does not sanitize the metadata. This way its possible to in ... |
| CVE-2020-27663 | vulnerable | In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct ... |
| CVE-2020-27662 | vulnerable | In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object ... |
| CVE-2020-26212 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and it is a Fr ... |
| CVE-2020-15226 | vulnerable | In GLPI before version 9.5.2, there is a SQL Injection in the API's se ... |
| CVE-2020-15217 | vulnerable | In GLPI before version 9.5.2, there is a leakage of user information t ... |
| CVE-2020-15177 | vulnerable | In GLPI before version 9.5.2, the `install/install.php` endpoint insec ... |
| CVE-2020-15176 | vulnerable | In GLPI before version 9.5.2, when supplying a back tick in input that ... |
| CVE-2020-15175 | vulnerable | In GLPI before version 9.5.2, the `pluginimage.send.php` endpoint allo ... |
| Bug | jessie | Description |
|---|
| CVE-2023-42462 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-42461 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41888 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41326 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41324 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41323 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41322 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41321 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-41320 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asse ... |
| CVE-2023-37278 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2023-36808 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-35940 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-35939 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-35924 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-34244 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-34107 | vulnerable | GLPI is a free asset and IT management software package. Versions of t ... |
| CVE-2023-34106 | vulnerable | GLPI is a free asset and IT management software package. Versions of t ... |
| CVE-2023-28852 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28849 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28838 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28639 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28636 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28634 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28633 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-28632 | vulnerable | GLPI is a free asset and IT management software package. Starting in v ... |
| CVE-2023-23610 | vulnerable | GLPI is a Free Asset and IT Management Software package. Versions prio ... |
| CVE-2023-22725 | vulnerable | GLPI is a Free Asset and IT Management Software package. Versions 0.6. ... |
| CVE-2023-22724 | vulnerable | GLPI is a Free Asset and IT Management Software package. Versions prio ... |
| CVE-2023-22722 | vulnerable | GLPI is a Free Asset and IT Management Software package. Versions 9.4. ... |
| CVE-2023-22500 | vulnerable | GLPI is a Free Asset and IT Management Software package. Versions 10.0 ... |
| CVE-2022-41941 | vulnerable | GLPI is a Free Asset and IT Management Software package. Versions 10.0 ... |
| CVE-2022-39376 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39375 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39373 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39372 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39371 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39370 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39323 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39277 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39276 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39262 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-39234 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Fre ... |
| CVE-2022-36112 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... |
| CVE-2022-35947 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... |
| CVE-2022-35946 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... |
| CVE-2022-35945 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... |
| CVE-2022-31187 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... |
| CVE-2022-31143 | vulnerable | GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free ... |
| CVE-2022-31082 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2022-31068 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2022-31061 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2022-31056 | vulnerable | GLPI is a Free Asset and IT Management Software package, Data center m ... |
| CVE-2022-29250 | vulnerable | GLPI is a Free Asset and IT Management Software package, that provides ... |
| CVE-2022-24876 | vulnerable | GLPI is a Free Asset and IT Management Software package, that provides ... |
| CVE-2022-24869 | vulnerable | GLPI is a Free Asset and IT Management Software package, that provides ... |
| CVE-2022-24868 | vulnerable | GLPI is a Free Asset and IT Management Software package, that provides ... |
| CVE-2022-24867 | vulnerable | GLPI is a Free Asset and IT Management Software package, that provides ... |
| CVE-2022-21720 | vulnerable | GLPI is a free asset and IT management software package. Prior to vers ... |
| CVE-2022-21719 | vulnerable | GLPI is a free asset and IT management software package. All GLPI vers ... |
| CVE-2021-43779 | vulnerable | GLPI is an open source IT Asset Management, issue tracking system and ... |
| CVE-2021-39213 | vulnerable | GLPI is a free Asset and IT management software package. Starting in v ... |
| CVE-2021-39211 | vulnerable | GLPI is a free Asset and IT management software package. Starting in v ... |
| CVE-2021-39210 | vulnerable | GLPI is a free Asset and IT management software package. In versions p ... |
| CVE-2021-39209 | vulnerable | GLPI is a free Asset and IT management software package. In versions p ... |
| CVE-2020-15108 | vulnerable | In glpi before 9.5.1, there is a SQL injection for all usages of "Clon ... |
| CVE-2020-11062 | vulnerable | In GLPI after 0.68.1 and before 9.4.6, multiple reflexive XSS occur in ... |
| CVE-2020-11060 | vulnerable | In GLPI before 9.4.6, an attacker can execute system commands by abusi ... |
| CVE-2020-11036 | vulnerable | In GLPI before version 9.4.6 there are multiple related stored XSS vul ... |
| CVE-2020-11035 | vulnerable | In GLPI after version 0.83.3 and before version 9.4.6, the CSRF tokens ... |
| CVE-2020-11034 | vulnerable | In GLPI before version 9.4.6, there is a vulnerability that allows byp ... |
| CVE-2020-11033 | vulnerable | In GLPI from version 9.1 and before version 9.4.6, any API user with R ... |
| CVE-2020-11032 | vulnerable | In GLPI before version 9.4.6, there is a SQL injection vulnerability f ... |
| CVE-2020-11031 | vulnerable | In GLPI before version 9.5.0, the encryption algorithm used is insecur ... |
| CVE-2020-5248 | vulnerable | GLPI before before version 9.4.6 has a vulnerability involving a defau ... |
| CVE-2019-1010310 | vulnerable | GLPI GLPI Product 9.3.1 is affected by: Frame and Form tags Injection ... |
| CVE-2019-1010307 | vulnerable | GLPI GLPI Product 9.3.1 is affected by: Cross Site Scripting (XSS). Th ... |
| CVE-2019-14666 | vulnerable | GLPI through 9.4.3 is prone to account takeover by abusing the ajax/au ... |
| CVE-2019-13240 | vulnerable | An issue was discovered in GLPI before 9.4.1. After a successful passw ... |
| CVE-2019-13239 | vulnerable | inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture. |
| CVE-2019-10233 | vulnerable | Teclib GLPI before 9.4.1.1 is affected by a timing attack associated w ... |
| CVE-2019-10232 | vulnerable | Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter ... |
| CVE-2019-10231 | vulnerable | Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerab ... |
| CVE-2018-13049 | vulnerable | The constructSQL function in inc/search.class.php in GLPI 9.2.x throug ... |
| CVE-2018-7563 | vulnerable | An issue was discovered in GLPI through 9.2.1. The application is affe ... |
| CVE-2018-7562 | vulnerable | A remote code execution issue was discovered in GLPI through 9.2.1. Th ... |
| CVE-2017-11475 | vulnerable | GLPI before 9.1.5.1 has SQL Injection in the condition rule field, exp ... |
| CVE-2017-11474 | vulnerable | GLPI before 9.1.5.1 has SQL Injection in the $crit variable in inc/com ... |
| CVE-2017-11329 | vulnerable | GLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.ph ... |
| CVE-2017-11184 | vulnerable | SQL injection exists in front/devicesoundcard.php in GLPI before 9.1.5 ... |
| CVE-2017-11183 | vulnerable | front/backup.php in GLPI before 9.1.5 allows remote authenticated admi ... |
| CVE-2016-7509 | vulnerable | Cross-site scripting (XSS) vulnerability in GLPI 0.90.4 allows remote ... |
| CVE-2016-7508 | vulnerable | Multiple SQL injection vulnerabilities in GLPI 0.90.4 allow an authent ... |
| CVE-2016-7507 | vulnerable | Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows ... |
| CVE-2015-7685 | vulnerable | GLPI before 0.85.3 allows remote authenticated users to create super-a ... |
| CVE-2015-7684 | vulnerable | Unrestricted file upload in GLPI before 0.85.3 allows remote authentic ... |
| CVE-2014-9258 | vulnerable | SQL injection vulnerability in ajax/getDropdownValue.php in GLPI befor ... |
| CVE-2014-8360 | vulnerable | Directory traversal vulnerability in inc/autoload.function.php in GLPI ... |
| CVE-2014-5032 | vulnerable | GLPI before 0.84.7 does not properly restrict access to cost informati ... |
| CVE-2010-3692 | vulnerable | Directory traversal vulnerability in the callback function in client.p ... |
| CVE-2010-3691 | vulnerable | PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is ena ... |
| CVE-2010-3690 | vulnerable | Multiple cross-site scripting (XSS) vulnerabilities in phpCAS before 1 ... |
| CVE-2010-2796 | vulnerable | Cross-site scripting (XSS) vulnerability in phpCAS before 1.1.2, when ... |
| CVE-2010-2795 | vulnerable | phpCAS before 1.1.2 allows remote authenticated users to hijack sessio ... |
| CVE-2010-1618 | vulnerable | Cross-site scripting (XSS) vulnerability in the phpCAS client library ... |