Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-15176

In GLPI before version 9.5.2, when supplying a back tick in input that gets put into a SQL query,the application does not escape or sanitize allowing for SQL Injection to occur. Leveraging this vulnerability an attacker is able to exfiltrate sensitive information like passwords, reset tokens, personal details, and more. The issue is patched in version 9.5.2

Published

2020-10-07T19:15:12.720

Last Modified

2024-11-21T05:05:00.597

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.7 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-89

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	glpi-project	glpi	< 9.5.2	Yes

References

https://github.com/glpi-project/glpi/commit/f021f1f365b4acea5066d3e57c6d22658cf32575 Patch, Third Party Advisory ([email protected])
https://github.com/glpi-project/glpi/security/advisories/GHSA-x93w-64x9-58qw Third Party Advisory ([email protected])
https://github.com/glpi-project/glpi/commit/f021f1f365b4acea5066d3e57c6d22658cf32575 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/glpi-project/glpi/security/advisories/GHSA-x93w-64x9-58qw Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)