CVE-2019-13239
N/A
N/A
Summary
inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/glpi-project/glpi/releases/tag/9.4.3
- https://github.com/glpi-project/glpi/commit/c2aa7a7cd6af28be3809acc7e7842d2d2008c0fb
- https://www.synacktiv.com/ressources/advisories/GLPI_9.4.0_stored_XSS.pdf
References
- https://github.com/glpi-project/glpi/releases/tag/9.4.3
- https://github.com/glpi-project/glpi/commit/c2aa7a7cd6af28be3809acc7e7842d2d2008c0fb
- https://www.synacktiv.com/ressources/advisories/GLPI_9.4.0_stored_XSS.pdf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.