4 matches found
Linux Distros Unpatched Vulnerability : CVE-2020-11032
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In GLPI before version 9.4.6, there is a SQL injection vulnerability for all helpdesk instances. Exploiting this vulnerability requires a technician account. Th...
CVE-2020-11032
In GLPI before version 9.4.6, there is a SQL injection vulnerability for all helpdesk instances. Exploiting this vulnerability requires a technician account. This is fixed in version 9.4.6...
CVE-2020-11032 SQL injection on addme_observer and addme_assign in GLPI
In GLPI before version 9.4.6, there is a SQL injection vulnerability for all helpdesk instances. Exploiting this vulnerability requires a technician account. This is fixed in version 9.4.6...
CVE-2020-11032
GLPI has a SQL injection vulnerability (CVE-2020-11032) affecting all helpdesk instances in versions prior to 9.4.6. Exploitation requires a technician account. The issue is fixed in GLPI 9.4.6; upgrading to that version is the stated remediation. The CVE details are supported by multiple sources...