Vulnerabilities

CVE-2024-27096

by Fred · 18/03/2024

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An authenticated user can exploit a SQL injection vulnerability in the search engine to extract data from the database. This issue has been patched in version 10.0.13.

More information : https://github.com/glpi-project/glpi/commit/61a0c2302b4f633f5065358adc36058e1abc37f9

Similar

Tags: Cybersecurity Alert