Security Advisory

CVE-2025-25192

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-25 17:58:20

Last updated 2025-03-18 17:03:35

Assigner GitHub_M

State PUBLISHED

Description

GLPI is a free asset and IT management software package. Prior to version 10.0.18, a low privileged user can enable debug mode and access sensitive information. Version 10.0.18 contains a patch. As a workaround, one may delete the `install/update.php` file.

← Browse all CVEs View on cve.org ↗