2021-05-26 21:33:19
fedora
PUBLISHED
GLPi 9.5.4 does not sanitize the metadata. This way its possible to insert XSS into plugins to execute JavaScript code.