漏洞描述
TeclibGLPI是法国Teclib公司的一套开源的IT资产管理套件。该套件包含设备状态管理、资产清单存储、管理流程和工作日志管理等功能。9.3.3版本之前在scripts/unlock_tasks.php存在SQL注入漏洞。
Teclib GLPI 9.3.3版本之前存在SQL注入漏洞(CVE-2019-10232)
PoC代码
暂无相关漏洞推荐
-
CVE-2019-10232: Teclib GLPI <= 9.3.3 - Unauthenticated SQL Injection POC
2025-08-01 | Teclib GLPITeclib GLPI <= 9.3.3 exposes a script (/scripts/unlock_tasks.php) that incorrectly sanitizes user... -
CVE-2020-11034: GLPI <9.4.6 - Open Redirect POC
2025-08-01 | GLPIGLPI prior 9.4.6 contains an open redirect vulnerability based on a regexp. -
CVE-2021-39211: GLPI 9.2/<9.5.6 - Information Disclosure POC
2025-08-01 | GLPI 9.2GLPI 9.2 and prior to 9.5.6 is susceptible to information disclosure via the telemetry endpoint, whi... -
CVE-2019-0193: Apache Solr Remote Code Execution POC
2025-09-01 | Apache Solr2019 年 08 月 01 日,Apache Solr 官方发布预警,Apache Solr DataImport 功能 在开启 Debug 模式时,可以接收来自请求的”dataConfig”参数,... -
CVE-2019-0230: Apache Struts <=2.5.20 - Remote Code Execution S2-059 POC
2025-09-01 | Apache StrutsApache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation when evaluated on raw user input in tag ...