Positions

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-16	CVE-2022-34128	Unrestricted Upload of File with Dangerous Type vulnerability in Glpi-Project Positions The Cartography (aka positions) plugin before 6.0.1 for GLPI allows remote code execution via PHP code in the POST data to front/upload.php. network low complexity glpi-project CWE-434 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.