Impact
A user with rights to create and share dashboards can build a dashboard containing javascript code. Any user that will open this dashboard will be subject to an XSS attack.
Patches
Upgrade to 10.0.13.
For more information
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.
Impact
A user with rights to create and share dashboards can build a dashboard containing javascript code. Any user that will open this dashboard will be subject to an XSS attack.
Patches
Upgrade to 10.0.13.
For more information
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.