CVE-2017-11474

2017-07-20T00:29:00
ID CVE-2017-11474
Type cve
Reporter NVD
Modified 2017-07-21T12:34:41

Description

GLPI before 9.1.5.1 has SQL Injection in the $crit variable in inc/computer_softwareversion.class.php, exploitable via ajax/common.tabs.php.