Vulnerabilities > Glpi Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-27 | CVE-2022-31082 | SQL Injection vulnerability in Glpi-Project Glpi Inventory 1.0.0/1.0.1 GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. | 7.5 |
| 2022-06-20 | CVE-2022-31062 | Path Traversal vulnerability in Glpi-Project Glpi Inventory 1.0.0/1.0.1 ### Impact A plugin public script can be used to read content of system files. | 5.0 |
| 2022-06-09 | CVE-2022-29250 | SQL Injection vulnerability in Glpi-Project Glpi 10.0.0 GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 4.0 |
| 2022-06-09 | CVE-2022-24876 | Cross-site Scripting vulnerability in Glpi-Project Glpi 10.0.0 GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 3.5 |
| 2022-04-21 | CVE-2022-24867 | Insufficiently Protected Credentials vulnerability in Glpi-Project Glpi GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 7.8 |
| 2022-04-21 | CVE-2022-24868 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 3.5 |
| 2022-04-21 | CVE-2022-24869 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 3.5 |
| 2022-03-28 | CVE-2021-44617 | SQL Injection vulnerability in Glpi-Project Glpi 9.4.6 A SQL Injection vulnerability exits in the Ramo plugin for GLPI 9.4.6 via the idu parameter in plugins/ramo/ramoapirest.php/getOutdated. | 7.5 |
| 2022-01-28 | CVE-2022-21720 | SQL Injection vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 4.0 |
| 2022-01-28 | CVE-2022-21719 | Cross-site Scripting vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 4.3 |