CVE-2023-34244

CVSS V2 None CVSS V3 None
Description
GLPI is a free asset and IT management software package. Starting in version 9.4.0 and prior to version 10.0.8, a malicious link can be crafted by an unauthenticated user that can exploit a reflected XSS in case any authenticated user opens the crafted link. Users should upgrade to version 10.0.8 to receive a patch.
Overview
  • CVE ID
  • CVE-2023-34244
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-07-05T19:22:07.569Z
  • Last Modified Date
  • 2023-07-05T19:22:07.569Z
History
Created Old Value New Value Data Type Notes
2024-06-25 20:12:21 Added to TrackCVE