cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-29889,https://securityvulnerability.io/vulnerability/CVE-2024-29889,SQL Injection Vulnerability in Saved Searches Feature Allows User Data Tampering and Takeover,"GLPI, a widely used asset and IT management software, features a SQL injection vulnerability that impacts the saved searches functionality. This issue permits an authenticated user to manipulate another user's account information, potentially leading to unauthorized control over that account. The vulnerability affects users of GLPI prior to version 10.0.15, which has since implemented fixes to address this security flaw.",Glpi-project,Glpi,8.1,HIGH,0.3650600016117096,false,,false,false,false,,,false,false,,2024-05-07T14:05:31.713Z,0