2 matches found
CVE-2021-3486
CVE-2021-3486 relates to GLPI 9.5.4 where metadata is not sanitized, enabling stored XSS in plugins and execution of JavaScript in the user’s browser. The root cause is lack of proper sanitation in the metadata handling. The description provides the affected software (GLPI 9.5.4) and the impact (...
Security fix for the ALT Linux 10 package glpi version 9.5.5-alt1
May 13, 2021 Pavel Zilke 9.5.5-alt1 - New version 9.5.5 - This is a security release, upgrading is recommended - Security fixes: + CVE-2021-3486 : Stored XSS in plugins information...