CVE-2026-42321 | glpi-project glpi up to 10.0.24 Asset Locked Tab cross site scripting

Inserito da Angelo Barbosa | Giu 3, 2026 | CVE

A vulnerability was found in glpi-project glpi up to 10.0.24 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Asset Locked Tab. The manipulation results in cross site scripting.

This vulnerability was named CVE-2026-42321. The attack may be performed from remote. There is no available exploit.

It is suggested to upgrade the affected component.

CVE-2026-42321 | glpi-project glpi up to 10.0.24 Asset Locked Tab cross site scripting

Post correlati

CVE-2024-0790 | WOLF Plugin up to 1.0.8.1 on WordPress cross-site request forgery

CVE-2024-46508 | yeti-platform yeti up to 2.1.11 hard-coded key

CVE-2025-8227 | yanyutao0402 ChanCMS up to 3.1.2 /collect/getArticle taskUrl deserialization (ICLP81)

CVE-2025-7229 | INVT VT-Designer PM3 File Parser out-of-bounds write