GLPI Project Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by glpi project
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Improper Access Control in GLPI Inventory Plugin by GLPI
CVE-2025-27147GLPI ProjectGlpi-inventory-plugin8.2HIGHFile Upload Vulnerability in GLPI IT Management Software
CVE-2025-24801GLPI ProjectGlpi8.6HIGHSQL Injection Vulnerability in GLPI Asset Management Software
CVE-2025-24799GLPI ProjectGlpiπEPSS 16%7.5HIGHSQL Injection Vulnerability in GLPI Asset and IT Management Software
CVE-2025-21619GLPI ProjectGlpi8.2HIGHGLPI: Security Patch Released for Delete User Account Vulnerability
CVE-2024-48912Glpi-projectGlpi8.1HIGHGLPI patches vulnerability in IT management software
CVE-2024-47761Glpi-projectGlpi7.2HIGHSecurity Vulnerability in IT Management Software Package
CVE-2024-47760Glpi-projectGlpi8.8HIGHGLPI Vulnerability Allows Take Over of User Accounts
CVE-2024-47758Glpi-projectGlpi8.8HIGHSQL Injection Vulnerability in GLPI Asset Management Software
CVE-2024-45608Glpi-projectGlpi8.8HIGHSQL Injection Vulnerability in GLPI Asset Management Software by GLPI Project
CVE-2024-41679Glpi-projectGlpi8.8HIGHGLPI allows account takeover via SQL Injection in AJAX scripts
CVE-2024-40638Glpi-projectGlpi8.8HIGHHijacking vulnerability in GLPI asset management software
CVE-2024-37149Glpi-projectGlpi8.8HIGHSQL Injection Vulnerability Affects GLPI Asset Management Software
CVE-2024-37148Glpi-projectGlpi8.1HIGHSQL Injection Vulnerability in Saved Searches Feature Allows User Data Tampering and Takeover
CVE-2024-29889Glpi-projectGlpiEPSS 36%8.1HIGHArbitrary Object Instantiation Vulnerability Patched in GLPI v10.0.13
CVE-2024-27098Glpi-projectGlpi9.6CRITICALGLPI SQL injection through inventory agent request
CVE-2023-46727Glpi-projectGlpi8.6HIGHGLPI Remote code execution from LDAP server configuration form on PHP 7.4
CVE-2023-46726glpi-projectglpi7.2HIGHGLPI vulnerable to unallowed PHP script execution
CVE-2023-42802Glpi-projectGlpi10CRITICALAccount takeover through API in GLPI
CVE-2023-41324Glpi-projectGlpi8.1HIGHAccount takeover via SQL Injection in UI layout preferences in GLPI
CVE-2023-41320Glpi-projectGlpi8.1HIGHAccount takeover via Kanban feature in GLPI
CVE-2023-41326Glpi-projectGlpi8.1HIGHFile deletion through document upload process in GLPI
CVE-2023-42462Glpi-projectGlpi7.7HIGHGLPI vulnerable to unauthenticated access to Dashboard data
CVE-2023-35940Glpi-projectGlpi7.5HIGHGLPI vulnerable to unauthorized access to Dashboard data
CVE-2023-35939Glpi-projectGlpi8.1HIGHGLPI vulnerable to SQL injection through Computer Virtual Machine information
CVE-2023-36808Glpi-projectGlpi8.6HIGH