Vulnerabilities > Glpi Project > Glpi > 9.1.7.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-03 | CVE-2022-39277 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 4.8 |
| 2022-11-03 | CVE-2022-39370 | Unspecified vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 4.3 |
| 2022-11-03 | CVE-2022-39372 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 5.4 |
| 2022-11-03 | CVE-2022-39375 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 5.4 |
| 2022-11-03 | CVE-2022-39376 | Improper Input Validation vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 6.5 |
| 2022-11-03 | CVE-2022-39323 | SQL Injection vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 9.8 |
| 2022-11-03 | CVE-2022-39234 | Insufficient Session Expiration vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 8.8 |
| 2022-11-03 | CVE-2022-39262 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 4.8 |
| 2022-11-03 | CVE-2022-39276 | Server-Side Request Forgery (SSRF) vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique. | 5.3 |
| 2022-09-19 | CVE-2022-35914 | Injection vulnerability in Glpi-Project Glpi /vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection. | 9.8 |