Known Vulnerabilities for products from Glpi-project

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Glpi-project".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-39213 GLPI is a free Asset and IT management software package. Starting in version 9.1 and prior to version 9.5.6, GLPI with API Re... 8.8 - HIGH 2021-09-15 2021-09-28
CVE-2021-39211 GLPI is a free Asset and IT management software package. Starting in version 9.2 and prior to version 9.5.6, the telemetry en... 5.3 - MEDIUM 2021-09-15 2021-09-28
CVE-2021-39210 GLPI is a free Asset and IT management software package. In versions prior to 9.5.6, the cookie used to store the autologin c... 6.5 - MEDIUM 2021-09-15 2021-09-28
CVE-2021-39209 GLPI is a free Asset and IT management software package. In versions prior to 9.5.6, a user who is logged in to GLPI can bypa... 8.8 - HIGH 2021-09-15 2021-09-27
CVE-2021-30144 The Dashboard plugin through 1.0.2 for GLPI allows remote low-privileged users to bypass access control on viewing informatio... 4.3 - MEDIUM 2021-04-06 2021-04-09
CVE-2021-21327 GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking a... 7.5 - HIGH 2021-03-08 2021-03-16
CVE-2021-21326 GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking a... 6.5 - MEDIUM 2021-03-08 2021-03-16
CVE-2021-21325 GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking a... 4.8 - MEDIUM 2021-03-08 2021-03-17
CVE-2021-21324 GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking a... 6.5 - MEDIUM 2021-03-08 2021-03-17
CVE-2021-21314 GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Managemen... 4.8 - MEDIUM 2021-03-03 2021-03-09
CVE-2021-21313 GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Managemen... 4.9 - MEDIUM 2021-03-03 2021-03-10
CVE-2021-21312 GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Managemen... 4.8 - MEDIUM 2021-03-03 2021-03-10
CVE-2021-21258 GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking a... 5.4 - MEDIUM 2021-03-02 2021-03-09
CVE-2021-21255 GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking a... 5.7 - MEDIUM 2021-03-02 2021-03-09
CVE-2021-3486 GLPi 9.5.4 does not sanitize the metadata. This way its possible to insert XSS into plugins to execute JavaScript code. 6.1 - MEDIUM 2021-05-26 2021-06-01
CVE-2020-27663 In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct Object Reference (IDOR) vulnerability that allows an a... 4.3 - MEDIUM 2020-11-26 2021-07-21
CVE-2020-27662 In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object Reference (IDOR) vulnerability that allows an attacker ... 4.3 - MEDIUM 2020-11-26 2021-07-21
CVE-2020-26212 GLPI stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package, that provi... 6.5 - MEDIUM 2020-11-25 2020-12-07
CVE-2020-15226 In GLPI before version 9.5.2, there is a SQL Injection in the API's search function. Not only is it possible to break the SQL... 4.3 - MEDIUM 2020-10-07 2020-10-14
CVE-2020-15217 In GLPI before version 9.5.2, there is a leakage of user information through the public FAQ. The issue was introduced in vers... 5.3 - MEDIUM 2020-10-07 2020-10-16

Known software with vulnerabilities from Glpi-project

Type Vendor Product Version
ApplicationGlpi-projectGlpi0.5

Popular searches for "Glpi-project"

GLPI ITSM is software for business powered by open source technologies

glpi-project.org

J FGLPI ITSM is software for business powered by open source technologies LPI ITSM is a software for business powered by open source technologies. Take control over your IT infrastruction: assets inventory, tickets, MDM

glpi-project.org/?lang=en&page=traduction www.glpi-project.org/?lang=en glpi-project.org/?lang=en glpi-project.org/?article41=&lang=en www.glpi-project.org/?lang=en%2C GLPi Information technology IT service management Software Open-source software Technology Business Inventory Service management Best practice Asset Software framework Infrastructure ITIL Master data management Open source User (computing) Android (operating system) Automation Market segmentation

GLPI - Authentication

demo.glpi-project.org

GLPI - Authentication

Password Login GLPi Authentication User (computing) JavaScript Web browser Data center management Self-service Subroutine System administrator Nynorsk Bokmål Esperanto .hk User profile FAQ Copyright Indonesian language Spanish language in the Americas