Exploit for #VU65742 SQL injection in GLPI

Cybersecurity Help s.r.o.

Published: 2022-08-07 | Updated: 2022-12-07

Vulnerability identifier: #VU65742

Vulnerability risk: High

CVSSv4.0: 8.8 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/U:Amber]

CVE-ID: CVE-2022-31061

CWE-ID: CWE-89

Exploitation vector: Network

Exploits in database: 3

December 7, 2022
- CVE-2022-31061 (PoC for GLPI CVE-2022-31061) [Github]
August 8, 2022
- CVE-2022-31061 (PoC for GLPI CVE-2022-31061) [Github]
August 7, 2022
- CVE-2022-31061 (PoC for GLPI CVE-2022-31061) [Github]

Vulnerable software:
GLPI
Web applications / CRM systems

Vendor: glpi-project