CVE-2026-22044

Publication date

2026-02-04 17:15:39

Family

GitHub_M

State

PUBLISHED

Description

GLPI is a free asset and IT management software package. From version 0.85 to before 10.0.23, an authenticated user can perform a SQL injection. This issue has been patched in version 10.0.23.