Lucene search
GitHub_MCVELIST:CVE-2022-24869HistoryApr 21, 2022 - 5:00 p.m.
CVE-2022-24869 Cross Site Scripting in GLPI
2022-04-2117:00:16
CWE-79
GitHub_M
raw.githubusercontent.com
3
GLPI is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In versions prior to 10.0.0 one can use ticket’s followups or setup login messages with a stylesheet link. This may allow for a cross site scripting attack vector. This issue is partially mitigated by cors security of browsers, though users are still advised to upgrade.
Related
cve
cve
CVE-2022-24869
2022-04-21 17:15:00
prion
prion
Cross site scripting
2022-04-21 17:15:00
osv
osv
CVE-2022-24869
2022-04-21 17:15:08
ubuntucve
ubuntucve
CVE-2022-24869
2022-04-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package glpi version 9.5.8-alt1
2022-07-11 00:00:00
Security fix for the ALT Linux 10 package glpi version 9.5.8-alt1
2022-07-07 00:00:00
redhatcve
redhatcve
CVE-2022-24868
2022-05-20 22:50:33