Vulnerabilities > Glpi Project

DATE	CVE	VULNERABILITY TITLE	RISK
2017-07-17	CVE-2017-11329	SQL Injection vulnerability in Glpi-Project Glpi GLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.php request with an entity_restrict parameter that is not a list of integers. network low complexity glpi-project CWE-89 critical	9.8
2017-06-21	CVE-2016-7508	SQL Injection vulnerability in Glpi-Project Glpi 0.90.4 Multiple SQL injection vulnerabilities in GLPI 0.90.4 allow an authenticated remote attacker to execute arbitrary SQL commands by using a certain character when the database is configured to use Big5 Asian encoding. network high complexity glpi-project CWE-89	7.5

Vulnerabilities > Glpi Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Glpi Project"}]}