glpi - CVE CyberSecurity Database News

Sep 27, 2023 API Exploit glpi-project glpi

CVE-2023-41324: Critical Vulnerability in GLPI allows API users with Read Access to compromise other accounts

The Gestionnaire Libre de Parc Informatique, or GLPI, is a free asset and IT management software package designed to provide ITIL Service Desk features, licenses

Sep 27, 2023 API Exploit glpi-project glpi

CVE-2023-41321: GLPI API Vulnerability Allowing Enumeration of Sensitive Fields - Upgrade to v10..10 Recommended

Recently, a security vulnerability has been discovered in the popular Gestionnaire Libre de Parc Informatique (GLPI) software package. GLPI is an open-source Asset and IT

Nov 17, 2022 XSS Exploit PHP glpi Reports plugin for GLPI

CVE-2022-39181 - GLPI Reports Plugin for GLPI Reflected Cross-Site-Scripting (RXSS) Vulnerability

The GLPI (Gestionnaire Libre de Parc Informatique) is a free and open-source IT service management software that allows users to manage inventory, asset tracking, and

Nov 3, 2022 API Exploit SQL glpi-project glpi

CVE-2022-39323: Time-Based Attack Exploiting SQL Injection in GLPI's api REST user_token

The open-source IT asset management tool, Gestionnaire Libre de Parc Informatique (GLPI), recently discovered a security vulnerability affecting its use of the api REST user

Nov 3, 2022 Exploit glpi-project glpi

CVE-2022-39234 - GLPI Authentication Bypass via Deleted or Deactivated User Persistence

Gestionnaire Libre de Parc Informatique (GLPI) is a popular open-source IT Asset Management and ITIL Service Desk software designed to help organizations maintain and manage