CVE-2026-22247

Publication date

2026-02-04 17:10:30

Family

GitHub_M

State

PUBLISHED

Description

GLPI is a free asset and IT management software package. From version 11.0.0 to before 11.0.5, a GLPI administrator can perform SSRF request through the Webhook feature. This issue has been patched in version 11.0.5.