Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glpi-project glpi 0.84 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-28633
GLPI is a free asset and IT management software package. Starting in version 0.84 and prior to versions 9.5.13 and 10.0.7, usage of RSS feeds is subject to server-side request forgery (SSRF). In case the remote address is not a valid RSS feed, an RSS autodiscovery feature is trig...
Glpi-project Glpi
NA
CVE-2013-5696
inc/central.class.php in GLPI prior to 0.84.2 does not attempt to make install/install.php unavailable after an installation is completed, which allows remote malicious users to conduct cross-site request forgery (CSRF) attacks, and (1) perform a SQL injection via an Etape_4 acti...
Glpi-project Glpi 0.80.5
Glpi-project Glpi 0.41
Glpi-project Glpi 0.72.4
Glpi-project Glpi 0.72
Glpi-project Glpi 0.80.6
Glpi-project Glpi 0.72.1
Glpi-project Glpi 0.72.2
Glpi-project Glpi 0.83.8
Glpi-project Glpi 0.70
Glpi-project Glpi 0.70.1
Glpi-project Glpi 0.6
Glpi-project Glpi 0.71.5
Glpi-project Glpi 0.68.2
Glpi-project Glpi 0.5
Glpi-project Glpi 0.71.3
Glpi-project Glpi 0.84
Glpi-project Glpi 0.80.2
Glpi-project Glpi
Glpi-project Glpi 0.71
Glpi-project Glpi 0.71.1
Glpi-project Glpi 0.83.7
Glpi-project Glpi 0.83.9
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started