Search CVE reports

Toggle filters

191 – 200 of 33646 results

Status is adjusted based on your filters.

CVE-2026-29047

Medium priority

Not in release

GLPI is a free asset and IT management software package. From 10.0.0 to before 10.0.24 and 11.0.6, an authenticated user can perform a SQL injection via the logs export feature. This vulnerability is fixed in 10.0.24 and 11.0.6.

1 affected package

glpi

Package 24.04 LTS
glpi Not in release
Show less packages

CVE-2026-26263

Medium priority

Not in release

GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, an unauthenticated time-based blind SQL injection exists in GLPI's Search engine. This vulnerability is fixed in 11.0.6.

1 affected package

glpi

Package 24.04 LTS
glpi Not in release
Show less packages

CVE-2026-26027

Medium priority

Not in release

GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, an unauthenticated user can store an XSS payload through the inventory endpoint. This vulnerability is fixed in 11.0.6.

1 affected package

glpi

Package 24.04 LTS
glpi Not in release
Show less packages

CVE-2026-26026

Medium priority

Not in release

GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, template injection by an administrator lead to RCE. This vulnerability is fixed in 11.0.6.

1 affected package

glpi

Package 24.04 LTS
glpi Not in release
Show less packages

CVE-2026-25932

Medium priority

Not in release

GLPI is a Free Asset and IT Management Software package. From 0.60 to before 10.0.24, an authenticated technician user can store an XSS payload in a supplier fields. This vulnerability is fixed in 10.0.24.

1 affected package

glpi

Package 24.04 LTS
glpi Not in release
Show less packages

CVE-2026-5673

Medium priority
Vulnerable

A flaw was found in libtheora. This heap-based out-of-bounds read vulnerability exists within the AVI (Audio Video Interleave) parser, specifically in the avi_parse_input_file() function. A local attacker could exploit this by...

4 affected packages

asc, libtheora, mkvtoolnix, ogmrip

Package 24.04 LTS
asc Vulnerable
libtheora Vulnerable
mkvtoolnix Vulnerable
ogmrip Not in release
Show less packages

CVE-2026-5266

Medium priority
Needs evaluation

[Unknown description]

1 affected package

mediawiki

Package 24.04 LTS
mediawiki Needs evaluation
Show less packages

CVE-2026-34095

Medium priority
Needs evaluation

[Unknown description]

1 affected package

mediawiki

Package 24.04 LTS
mediawiki Needs evaluation
Show less packages

CVE-2026-34094

Medium priority
Needs evaluation

[Unknown description]

1 affected package

mediawiki

Package 24.04 LTS
mediawiki Needs evaluation
Show less packages

CVE-2026-34093

Medium priority
Needs evaluation

[Unknown description]

1 affected package

mediawiki

Package 24.04 LTS
mediawiki Needs evaluation
Show less packages
  1. Previous page
  2. 18
  3. 19
  4. 20
  5. 21
  6. 22
  7. Next page
Export to JSON