GLPI Project Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by glpi project
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Improper Access Control in GLPI Inventory Plugin by GLPI
CVE-2025-27147GLPI ProjectGlpi-inventory-plugin8.2HIGHFile Upload Vulnerability in GLPI IT Management Software
CVE-2025-24801GLPI ProjectGlpi8.6HIGHSQL Injection Vulnerability in GLPI Asset Management Software
CVE-2025-24799GLPI ProjectGlpi๐๐พ๐กEPSS 54%๐ฐ7.5HIGHSQL Injection Vulnerability in GLPI Asset and IT Management Software
CVE-2025-21619GLPI ProjectGlpi8.2HIGHGLPI: Security Patch Released for Delete User Account Vulnerability
CVE-2024-48912Glpi-projectGlpi8.1HIGHGLPI patches vulnerability in IT management software
CVE-2024-47761Glpi-projectGlpi7.2HIGHSecurity Vulnerability in IT Management Software Package
CVE-2024-47760Glpi-projectGlpi8.8HIGHGLPI Vulnerability Allows Take Over of User Accounts
CVE-2024-47758Glpi-projectGlpi8.8HIGHSQL Injection Vulnerability in GLPI Asset Management Software
CVE-2024-45608Glpi-projectGlpi8.8HIGHSQL Injection Vulnerability in GLPI Asset Management Software by GLPI Project
CVE-2024-41679Glpi-projectGlpi8.8HIGHGLPI allows account takeover via SQL Injection in AJAX scripts
CVE-2024-40638Glpi-projectGlpi8.8HIGHHijacking vulnerability in GLPI asset management software
CVE-2024-37149Glpi-projectGlpi8.8HIGHSQL Injection Vulnerability Affects GLPI Asset Management Software
CVE-2024-37148Glpi-projectGlpi8.1HIGHSQL Injection Vulnerability in Saved Searches Feature Allows User Data Tampering and Takeover
CVE-2024-29889Glpi-projectGlpiEPSS 23%8.1HIGHArbitrary Object Instantiation Vulnerability Patched in GLPI v10.0.13
CVE-2024-27098Glpi-projectGlpi9.6CRITICALSQL Injection Vulnerability in GLPI's Search Engine
CVE-2024-27096GLPI ProjectGlpi7.7HIGHGLPI SQL injection through inventory agent request
CVE-2023-46727Glpi-projectGlpiEPSS 34%8.6HIGHGLPI Remote code execution from LDAP server configuration form on PHP 7.4
CVE-2023-46726glpi-projectglpi7.2HIGHGLPI vulnerable to unallowed PHP script execution
CVE-2023-42802Glpi-projectGlpi10CRITICALAccount takeover via SQL Injection in UI layout preferences in GLPI
CVE-2023-41320Glpi-projectGlpi8.1HIGHAccount takeover via Kanban feature in GLPI
CVE-2023-41326Glpi-projectGlpi8.1HIGHFile deletion through document upload process in GLPI
CVE-2023-42462Glpi-projectGlpi7.7HIGHAccount takeover through API in GLPI
CVE-2023-41324Glpi-projectGlpi8.1HIGHGLPI vulnerable to unauthorized access to Dashboard data
CVE-2023-35939Glpi-projectGlpi8.1HIGHGLPI vulnerable to SQL injection through Computer Virtual Machine information
CVE-2023-36808Glpi-projectGlpiEPSS 15%8.6HIGH