GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to version 10.0.1 it is possible to add extra information by SQL injection on search pages. In order to exploit this vulnerability a user must be logged in.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2022-06-09T19:55:12
Updated: 2024-08-03T06:17:54.532Z
Reserved: 2022-04-13T00:00:00
Link: CVE-2022-29250
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-06-09T20:15:08.267
Modified: 2022-06-16T19:35:11.417
Link: CVE-2022-29250
Redhat
No data.