Vulnerabilities (CVE)

Filtered by vendor Glpi-project Subscribe
Filtered by product Positions
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-34128 1 Glpi-project 1 Positions 2024-11-21 N/A 9.8 CRITICAL
The Cartography (aka positions) plugin before 6.0.1 for GLPI allows remote code execution via PHP code in the POST data to front/upload.php.