2 matches found
CVE-2026-13490
creationtimestamp| type| source ---|---|--- 2026-06-28 13:55:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mpe4tnqnwd2s 2026-06-29 19:28:03+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mph7ujffep23...
CVE-2026-13490
The CVE concerns glpi-project glpi versions 11.0.5/11.0.6/11.0.7. It affects the Document Handler, specifically Document::canViewFile in front/document.send.php. Manipulating the docid argument can bypass authorization, enabling a remote attack. The description notes high complexity and that expl...