Exploit for #VU42543 SQL injection in GLPI
Vulnerability identifier: #VU42543
Vulnerability risk: Medium
CVSSv3.1: 6.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:F/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-89
Exploitation vector: Network
Exploits in database: 3
- August 11, 2020
- GLPI - install.php Remote Command Execution (Metasploit) [Exploit-DB]
- GLPI 0.84.1 - Multiple Vulnerabilities [Exploit-DB]
- GLPI install.php Remote Command Execution [Metasploit]
Impact: Information disclosure and data manipulation
Vulnerable software:
GLPI
Web applications /
CRM systems
Vendor: glpi-project
