4 matches found
CVE-2022-21719
GLPI is a free asset and IT management software package. All GLPI versions prior to 9.5.7 are vulnerable to reflected cross-site scripting. Version 9.5.7 contains a patch for this issue. There are no known workarounds...
CVE-2022-21719 Reflected XSS using reload button in GLPI
GLPI is a free asset and IT management software package. All GLPI versions prior to 9.5.7 are vulnerable to reflected cross-site scripting. Version 9.5.7 contains a patch for this issue. There are no known workarounds...
CVE-2022-21719
Summary: CVE-2022-21719 affects GLPI; all versions before 9.5.7 are vulnerable to reflected XSS. GLPI 9.5.7 contains a patch. There are no public workarounds noted. The connected documents describe additional GLPI issues (XSS, SSRF, SQL injection, privilege/authorization problems) across broader ...
CVE-2022-21719 Reflected XSS using reload button in GLPI
GLPI is a free asset and IT management software package. All GLPI versions prior to 9.5.7 are vulnerable to reflected cross-site scripting. Version 9.5.7 contains a patch for this issue. There are no known workarounds...