The vulnerability of the GLPI system’s request, incident, and inventory management functions arises from incorrect restrictions on the path to the restricted catalog when processing URL parameters. This allows attackers to carry out phishing attacks against user accounts.
The vulnerability of the GLPI system’s request, incident, and computer equipment inventory management processes is related to incorrect restrictions on the path to the restricted access catalog when processing URL parameters. Exploiting this vulnerability allows a malicious actor to carry out...