CVE-2026-5385 | glpi-project glpi up to 11.0.6 Knowledge Base cross site scripting (GHSA-2fg5-jg72-h338)

Inserito da Angelo Barbosa | Giu 3, 2026 | CVE

A vulnerability labeled as problematic has been found in glpi-project glpi up to 11.0.6. This affects an unknown part of the component Knowledge Base. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-5385. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2026-5385 | glpi-project glpi up to 11.0.6 Knowledge Base cross site scripting (GHSA-2fg5-jg72-h338)

Post correlati

CVE-2026-8136 | SourceCodester Pharmacy Sales and Inventory System 1.0 /index.php?page=users Name cross site scripting

CVE-2024-55228 | Dolibarr CRM 21.0.0-beta Product Module Title cross site scripting

CVE-2025-58733 | Microsoft

CVE-2026-1573 | OMIGO Plugin up to 3.3 on WordPress Shortcode omigo_donate_button cross site scripting