CVE-2022-35914

Description

/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection.

Related CPE's

aglpi-projectglpi********

References

http://www.bioinformatics.org/phplabware/sourceer/sourceer.php?&Sfs=htmLawedTest.php&Sl=.%2Finternal_utilities%2FhtmLawed

PatchThird Party Advisory

https://github.com/glpi-project/glpi/releases

Release NotesThird Party Advisory

https://glpi-project.org/fr/glpi-10-0-3-disponible/

Release NotesVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io