CVE-2019-10232
NONE EPSS 97.5%
Published Mar 27, 20197y ago · Modified Jun 17, 20262w ago
Published Mar 27, 2019 7y ago
Last Modified Jun 17, 2026 2w ago
Description
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.
Threat Intelligence
EPSS Exploit Probability
97.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-89 SQL Injection Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| teclib-edition | gestionnaire_libre_de_parc_informatique | * | ≤9.3.3 |
References 1
- github.com https://github.com/glpi-project/glpi/commit/684d4fc423652ec7dde21cac4d41c2df53f56b3c
Remediation
- github.com https://github.com/glpi-project/glpi/commit/684d4fc423652ec7dde21cac4d41c2df53f56b3c