Vulnerability Details CVE-2019-12530
Incorrect access control was discovered in the stdonato Dashboard plugin through 0.9.7 for GLPI, affecting df.php, issue.php, load.php, mem.php, traf.php, and uptime.php in front/sh.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2019-12530
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.8.8
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.8.9
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.0
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.1
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.2
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.3
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.4
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.6
-
cpe:2.3:a:glpi_dashboard_project:glpi_dashboard:0.9.7