Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:glpi-project:glpi:10.0.11:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2024-23645 |
GLPI is a Free Asset and IT Management Software package. A malicious URL can be used to execute XSS on reports pages. Upgrade to 10.0.12. Published: February 01, 2024; 1:15:53 PM -0500 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |
CVE-2023-51446 |
GLPI is a Free Asset and IT Management Software package. When authentication is made against a LDAP, the authentication form can be used to perform LDAP injection. Upgrade to 10.0.12. Published: February 01, 2024; 1:15:53 PM -0500 |
V4.0:(not available) V3.1: 8.1 HIGH V2.0:(not available) |