GLPI SQL注入漏洞

GLPI is an open source IT and asset management software for individual developers. The software provides a full-featured IT resource management interface that you can use to build databases to fully manage IT computers, monitors, servers, printers, network devices, phones, and even toner cartridg...

PT-2022-12187 · Unknown +2 · Ramo Plugin +2

Name of the Vulnerable Software and Affected Versions: GLPI version 9.4.6 Description: A SQL Injection issue exists in the Ramo plugin for GLPI via the idu parameter in the /plugins/ramo/ramoapirest.php/getOutdated API endpoint. Recommendations: For GLPI version 9.4.6, consider restricting access...