Security Advisory

CVE-2026-26263

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-06 14:36:57

Last updated 2026-04-07 03:55:42

Assigner GitHub_M

State PUBLISHED

Description

GLPI is a free asset and IT management software package. From 11.0.0 to before 11.0.6, an unauthenticated time-based blind SQL injection exists in GLPIs Search engine. This vulnerability is fixed in 11.0.6.

← Browse all CVEs View on cve.org ↗