| Max CVSS | 6.4 | Min CVSS | 6.4 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2013-2225 | 6.4 |
inc/ticket.class.php in GLPI 0.83.9 and earlier allows remote attackers to unserialize arbitrary PHP objects via the _predefined_fields parameter to front/ticket.form.php. Per: http://cwe.mitre.org/data/definitions/502.html
"CWE-502: Deserialization
|
28-05-2014 - 17:07 | 27-05-2014 - 14:55 |