CVE-2024-40638 | GLPI up to 10.0.16 sql injection (GHSA-8843-r3m7-gfqx)

Posted by Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability was found in GLPI up to 10.0.16. It has been classified as critical. This affects an unknown part. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-40638. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40638 | GLPI up to 10.0.16 sql injection (GHSA-8843-r3m7-gfqx)

Related Posts

CVE-2024-2499 | Squelch Tabs and Accordions Shortcodes Plugin up to 0.4.3 on WordPress Shortcode accordions cross site scripting

CVE-2024-21188 | Oracle Financial Services Revenue Management and Billing 6.0.0.0.0/6.1.0.0.0 Financial Service Remote Code Execution

CVE-2024-35263 | Microsoft Dynamics 365 information disclosure

CVE-2024-37825 | EnvisionWare Computer Access & Reservation Control SelfCheck prior 3.2.0.27184 Hotfix May 2024 path traversal