Security Advisory

CVE-2024-27104

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-18 16:16:38

Last updated 2024-08-26 14:00:56

Assigner GitHub_M

State PUBLISHED

Description

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. A user with rights to create and share dashboards can build a dashboard containing javascript code. Any user that will open this dashboard will be subject to an XSS attack. This issue has been patched in version 10.0.13.

← Browse all CVEs View on cve.org ↗