Glpi
This hub aggregates every CVE we track for Glpi, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
193
CVEs tracked
14
Critical
64
High
1
In CISA KEV
Severity distribution
MEDIUM107HIGH64CRITICAL14LOW8
Monthly trend
3
0
0
0
12
5
0
6
3
0
0
0
8
1
0
0
0
3
2
3
4
5
1
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Glpi.
- CVE-2026-32312GLPI: Unauthorized export of form structure4.3
- CVE-2026-29047GLPI has an Authenticated SQL Injection via log exports7.2
- CVE-2026-26263GLPI has an Unauthenticated SQL Injection via Search engine8.1
- CVE-2026-26027GLPI has an Unauthenticated Stored XSS via inventory7.5
- CVE-2026-26026GLPI has a Server-Side Template Injection via Double-Compilation9.1
- CVE-2026-25932GLPI has Stored XSS in Supplier 'Website' field7.2
- CVE-2026-25937GLPI has a MFA bypass6.5
- CVE-2026-25936GLPI Vulnerable to Authenticated SQL Injection6.5
- CVE-2026-22248GLPI affected by Remote Code Execution via malicious upload8.0
- CVE-2026-25590GLPI Inventory Plugin has Reflected XSS in task jobs4.5
- CVE-2026-22044GLPI is Vulnerable to Authenticated SQL Injection6.5
- CVE-2026-23624GLPI is vulnerable to session stealing on externally authenticated user change4.3
- CVE-2026-22247GLPI is Vulnerable to SSRF via Webhooks4.1
- CVE-2025-66417GLPI has an unauthenticated SQL injection through the inventory endpoint7.5
- CVE-2025-64516GLPI incorrectly authorizes access to documents7.5
Product normalization is registry-driven with AI assist and human review. How it works