Vulnerabilities (CVE)

Filtered by vendor Glpi-project Subscribe
Filtered by product Cmdb
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-34125 1 Glpi-project 1 Cmdb 2024-02-28 N/A 6.5 MEDIUM
front/icon.send.php in the CMDB plugin before 3.0.3 for GLPI allows attackers to gain read access to sensitive information via a _log/ pathname in the file parameter.