Описание
GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.
Ссылки
Уязвимые конфигурации
Конфигурация 1Версия до 0.84.6 (включая)
cpe:2.3:a:glpi-project:glpi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00388
Низкий
5 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
почти 11 лет назад
GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.
debian
почти 11 лет назад
GLPI before 0.84.7 does not properly restrict access to cost informati ...
github
больше 3 лет назад
GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.
EPSS
Процентиль: 59%
0.00388
Низкий
5 Medium
CVSS2
Дефекты
CWE-264