Vulnerabilities > Teclib Edition

DATE CVE VULNERABILITY TITLE RISK
2023-05-31 CVE-2023-33971 Cross-site Scripting vulnerability in Teclib-Edition Form Creator 2.13.5
Formcreator is a GLPI plugin which allow creation of custom forms and the creation of one or more tickets when the form is filled.
network
low complexity
teclib-edition CWE-79
5.4
2023-04-05 CVE-2023-28855 Improper Privilege Management vulnerability in Teclib-Edition Fields
Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms.
network
low complexity
teclib-edition CWE-269
6.5
2022-09-22 CVE-2021-39190 Missing Authorization vulnerability in Teclib-Edition System Center Configuration Manager
The SCCM plugin for GLPI is a plugin to synchronize computers from SCCM (version 1802) to GLPI.
network
low complexity
teclib-edition CWE-862
5.3
2022-01-05 CVE-2021-43779 OS Command Injection vulnerability in Teclib-Edition Addressing
GLPI is an open source IT Asset Management, issue tracking system and service desk system.
network
low complexity
teclib-edition CWE-78
critical
9.9
2019-07-10 CVE-2019-12724 Cross-site Scripting vulnerability in Teclib-Edition News
An issue was discovered in the Teclib News plugin through 1.5.2 for GLPI.
network
low complexity
teclib-edition CWE-79
6.1
2019-07-10 CVE-2019-12723 SQL Injection vulnerability in Teclib-Edition Fields
An issue was discovered in the Teclib Fields plugin through 1.9.2 for GLPI.
network
low complexity
teclib-edition CWE-89
critical
9.8
2019-03-27 CVE-2019-10232 SQL Injection vulnerability in Teclib-Edition Gestionnaire Libre DE Parc Informatique
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.
network
low complexity
teclib-edition CWE-89
critical
9.8
2019-03-27 CVE-2019-10231 Type Confusion vulnerability in Teclib-Edition Gestionnaire Libre DE Parc Informatique
Teclib GLPI before 9.4.1.1 is affected by a PHP type juggling vulnerability allowing bypass of authentication.
network
low complexity
teclib-edition CWE-843
critical
9.8
2018-02-21 CVE-2018-7289 Encoding Error vulnerability in Teclib-Edition Armadito Antivirus 0.12.7.2
An issue was discovered in armadito-windows-driver/src/communication.c in Armadito 0.12.7.2.
local
low complexity
teclib-edition CWE-172
3.3