2 matches found
ROS-20251007-04
A vulnerability in GLPI's computer hardware request, incident, and inventory system is related to a key-based authorization bypass. key authorization. Exploitation of the vulnerability could allow a remote intruder, compromise the system Vulnerability in the GLPI computer equipment request,...
The vulnerability of the GLPI system’s request and incident handling process, related to improper neutralization of input data during the generation of web pages, allows attackers to carry out attacks using cross-site scripts.
The vulnerability of the GLPI system for handling requests and incidents is related to insufficient cleaning of user data when processing external links. Users can insert and execute arbitrary HTML and scripts in the user’s browser within the context of the vulnerable website. Exploiting this...