Vulnerabilities > Glpi Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-16 | CVE-2022-34126 | Path Traversal vulnerability in Glpi-Project Activity The Activity plugin before 3.1.1 for GLPI allows reading local files via directory traversal in the front/cra.send.php file parameter. | 7.5 |
| 2023-04-16 | CVE-2022-34127 | Path Traversal vulnerability in Glpi-Project Manageentities The Managentities plugin before 4.0.2 for GLPI allows reading local files via directory traversal in the inc/cri.class.php file parameter. | 7.5 |
| 2023-04-16 | CVE-2022-34128 | Unrestricted Upload of File with Dangerous Type vulnerability in Glpi-Project Positions The Cartography (aka positions) plugin before 6.0.1 for GLPI allows remote code execution via PHP code in the POST data to front/upload.php. | 9.8 |
| 2023-04-05 | CVE-2023-28636 | Unspecified vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 4.8 |
| 2023-04-05 | CVE-2023-28639 | Unspecified vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 6.1 |
| 2023-04-05 | CVE-2023-28838 | Unspecified vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 8.1 |
| 2023-04-05 | CVE-2023-28849 | Unspecified vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 5.4 |
| 2023-04-05 | CVE-2023-28852 | Unspecified vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 4.8 |
| 2023-04-05 | CVE-2023-29006 | Unspecified vulnerability in Glpi-Project Order The Order GLPI plugin allows users to manage order management within GLPI. | 8.8 |
| 2023-04-05 | CVE-2023-28634 | Unspecified vulnerability in Glpi-Project Glpi GLPI is a free asset and IT management software package. | 8.8 |