3 matches found
Exploit for SQL Injection in Glpi-Project Glpi
CVE-2025-66417 PoC /\...
CVE-2025-66417
creationtimestamp| type| source ---|---|--- 2026-01-15 17:50:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mci5ipfyov2z 2026-01-16 15:50:12+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mckh7ywezk2m...
CVE-2025-66417
GLPI (from version 11.0.0 up to, but not including, 11.0.3) is affected by an unauthenticated SQL injection via the inventory endpoint. The root cause is improper handling of input in the inventory API, enabling arbitrary SQL execution. The issue is fixed in version 11.0.3. The vulnerability is d...