Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glpi-project glpi 0.84 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-28633
GLPI is a free asset and IT management software package. Starting in version 0.84 and prior to versions 9.5.13 and 10.0.7, usage of RSS feeds is subject to server-side request forgery (SSRF). In case the remote address is not a valid RSS feed, an RSS autodiscovery feature is trig...
Glpi-project Glpi
NA
CVE-2013-5696
inc/central.class.php in GLPI prior to 0.84.2 does not attempt to make install/install.php unavailable after an installation is completed, which allows remote malicious users to conduct cross-site request forgery (CSRF) attacks, and (1) perform a SQL injection via an Etape_4 acti...
Glpi-project Glpi 0.83.8
Glpi-project Glpi 0.83.9
Glpi-project Glpi 0.83.91
Glpi-project Glpi 0.84
Glpi-project Glpi 0.80.4
Glpi-project Glpi 0.80.3
Glpi-project Glpi 0.80.2
Glpi-project Glpi 0.80.1
Glpi-project Glpi 0.72
Glpi-project Glpi 0.71.6
Glpi-project Glpi 0.71.5
Glpi-project Glpi 0.70
Glpi-project Glpi 0.68.3
Glpi-project Glpi 0.68.2
Glpi-project Glpi 0.51
Glpi-project Glpi 0.5
Glpi-project Glpi 0.83.31
Glpi-project Glpi 0.83.3
Glpi-project Glpi 0.83.2
Glpi-project Glpi 0.83.1
Glpi-project Glpi 0.83
Glpi-project Glpi 0.78.2
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started