CVE-2024-45600 Fields GLPI plugin has an Authenticated SQL Injection

Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. Prior to 1.21.13, an authenticated user can perform a SQL injection when the plugin is active. The vulnerability is fixed in 1.21.13...

Fields GLPI plugin SQL注入漏洞

Fields GLPI plugin is an open source plugin for GLPI Project Plugins. A SQL injection vulnerability exists in Fields GLPI plugin version 1.21.12 and earlier, which stems from the presence of a SQL injection vulnerability that allows an authenticated user to perform SQL injection while the plugin ...