Security Advisory

CVE-2022-31056

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-06-28 00:00:00

Last updated 2025-04-23 18:06:03

Assigner GitHub_M

State PUBLISHED

Description

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms (Ticket/Change/Problem) permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and all affected users are advised to upgrade.

← Browse all CVEs View on cve.org ↗