CVE-2022-31056

Published: 2022-06-28T18:15Z

Last Modified: 2024-11-21T07:03Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. In affected versions all assistance forms (Ticket/Change/Problem) permit sql injection on the actor fields. This issue has been resolved in version 10.0.2 and all affected users are advised to upgrade. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt