ALT-PU-2015-1019-1

Package update glpi in branch sisyphus

Version0.85.1-alt1

Published2015-01-10

Max severityMEDIUM

Severity:

Closed issues (1)

MEDIUM6.5

SQL injection vulnerability in ajax/getDropdownValue.php in GLPI before 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the condition parameter.

Published: 2014-12-19Modified: 2025-04-12

CVSS 2.0MEDIUM 6.5

CVSS:2.0/AV:N/AC:L/Au:S/C:P/I:P/A:P

References