CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Glpi-Project: >> Glpi >> 0.84.7 Security Vulnerabilities

CVE-2014-9258

SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the condition parameter.

CVSS Score

6.5

EPSS Score

0.089

Published

2014-12-19

Page 10

Vulnerabilities

Vulnerable Software

Glpi-Project: >> Glpi >> 0.84.7 Security Vulnerabilities

Products

Pricing

Contact Us