exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2024-27914

больше 1 года назад

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An unauthenticated user can provide a malicious link to a GLPI administrator in order to exploit a reflected XSS vulnerability. The XSS will only trigger if the administrator navigates through the debug bar. This issue has been patched in version 10.0.13.

CVSS3: 5.3

EPSS: Низкий

CVE-2024-27914

больше 1 года назад

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An unauthenticated user can provide a malicious link to a GLPI administrator in order to exploit a reflected XSS vulnerability. The XSS will only trigger if the administrator navigates through the debug bar. This issue has been patched in version 10.0.13.

CVSS3: 5.3

EPSS: Низкий

CVE-2024-27914

больше 1 года назад

GLPI is a Free Asset and IT Management Software package, Data center m ...

CVSS3: 5.3

EPSS: Низкий

ROS-20240812-13

11 месяцев назад

Множественные уязвимости glpi

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-27914 GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An unauthenticated user can provide a malicious link to a GLPI administrator in order to exploit a reflected XSS vulnerability. The XSS will only trigger if the administrator navigates through the debug bar. This issue has been patched in version 10.0.13.	CVSS3: 5.3	2% Низкий	больше 1 года назад
CVE-2024-27914 GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An unauthenticated user can provide a malicious link to a GLPI administrator in order to exploit a reflected XSS vulnerability. The XSS will only trigger if the administrator navigates through the debug bar. This issue has been patched in version 10.0.13.	CVSS3: 5.3	2% Низкий	больше 1 года назад
CVE-2024-27914 GLPI is a Free Asset and IT Management Software package, Data center m ...	CVSS3: 5.3	2% Низкий	больше 1 года назад
ROS-20240812-13 Множественные уязвимости glpi	CVSS3: 8.1		11 месяцев назад

Уязвимостей на страницу