Security Advisory

CVE-2025-23024

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-25 15:47:32
Last updated 2025-02-25 20:19:56
Assigner GitHub_M
State PUBLISHED

Description

GLPI is a free asset and IT management software package. Starting in version 0.72 and prior to version 10.0.18, an anonymous user can disable all the active plugins. Version 10.0.18 contains a patch. As a workaround, one may delete the `install/update.php` file.