cedric-anne
published
GHSA-r93q-chh5-jgh4Apr 5, 2023
Package
glpi
(glpi)
Affected versions
>= 0.85
Patched versions
9.5.13, 10.0.7
Description
Impact
A malicious link can be crafted by an unauthenticated user. It will be able to exploit a reflected XSS in case any authenticated user opens the crafted link.
Patches
Upgrade to 10.0.7
For more information
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.
Impact
A malicious link can be crafted by an unauthenticated user. It will be able to exploit a reflected XSS in case any authenticated user opens the crafted link.
Patches
Upgrade to 10.0.7
For more information
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.