CVE-2026-5385 | glpi-project glpi up to 11.0.6 Knowledge Base cross site scripting (GHSA-2fg5-jg72-h338)

Inserito da Angelo Barbosa | Giu 3, 2026 | CVE

A vulnerability labeled as problematic has been found in glpi-project glpi up to 11.0.6. This affects an unknown part of the component Knowledge Base. Such manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2026-5385. The attack may be launched remotely. There is no exploit available.

The affected component should be upgraded.

CVE-2026-5385 | glpi-project glpi up to 11.0.6 Knowledge Base cross site scripting (GHSA-2fg5-jg72-h338)

Post correlati

CVE-2024-51666 | Automattic Tours Plugin up to 1.0.0 on WordPress authorization

CVE-2025-40805 | Siemens Industrial Edge Cloud Device API Endpoint authorization (ssa-001536)

CVE-2025-15086 | youlaitech youlai-mall 1.0.0/2.0.0 MemberController.java getMemberByMobile access control

CVE-2024-36940 | Linux Kernel up to 6.8.9 pinctrl_enable double free