2019-07-10 13:56:01
mitre
PUBLISHED
An issue was discovered in the Teclib News plugin through 1.5.2 for GLPI. It allows a stored XSS attack via the $_POST[name] parameter.