CVE-2019-10232

NONE EPSS 97.5%
Published Mar 27, 20197y ago · Modified Jun 17, 20262w ago
Find Similar
Published Mar 27, 2019 7y ago
Last Modified Jun 17, 2026 2w ago

Description

Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.

Threat Intelligence

EPSS Exploit Probability
97.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-89 SQL Injection Injection

Affected Products 1

VendorProductVersionRange
teclib-editiongestionnaire_libre_de_parc_informatique* ≤9.3.3

References 1

  • github.com https://github.com/glpi-project/glpi/commit/684d4fc423652ec7dde21cac4d41c2df53f56b3c
    PatchThird Party Advisory

Remediation

  • github.com https://github.com/glpi-project/glpi/commit/684d4fc423652ec7dde21cac4d41c2df53f56b3c
    PatchThird Party Advisory