| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-5248 | Public GLPIKEY can be used to decrypt any data in GLPI | glpi-project | glpi | High | 7.2 | 2020-05-12 16:05:17 | Deep Dive |
| CVE-2020-11036 | XSS in GLPI | glpi-project | GLPI | High | 7.6 | 2020-05-05 21:35:12 | Deep Dive |
| CVE-2020-11035 | weak CSRF tokens in GLPI | glpi-project | GLPI | High | 7.5 | 2020-05-05 21:30:12 | Deep Dive |
| CVE-2020-11034 | bypass of manageRedirect in GLPI | glpi-project | GLPI | Medium | 6.1 | 2020-05-05 21:20:12 | Deep Dive |
| CVE-2020-11033 | Able to read any token through API user endpoint in GLPI | glpi-project | GLPI | Medium | 6.6 | 2020-05-05 21:15:12 | Deep Dive |
| CVE-2020-11032 | SQL injection on addme_observer and addme_assign in GLPI | glpi-project | GLPI | High | 7.6 | 2020-05-05 21:05:12 | Deep Dive |
| CVE-2013-2227 | GLPI 安全漏洞 | INDEPNET Development Team | GLPI | 高危 | - | 2019-11-01 16:50:29 | Deep Dive |
| CVE-2019-1010307 | Teclib GLPI 跨站脚本漏洞 | GLPI | GLPI Product | 中危 | - | 2019-07-15 17:05:18 | Deep Dive |
| CVE-2019-1010310 | Teclib GLPI 信任管理问题漏洞 | GLPI | GLPI Product | 低危 | - | 2019-07-12 17:45:56 | Deep Dive |