CVE ID : CVE-2024-43417

Published : Nov. 15, 2024, 7:15 p.m. | 1 hour, 1 minute ago

Description : GLPI is a free asset and IT management software package. An unauthenticated user can provide a malicious link to a GLPI technician in order to exploit a reflected XSS vulnerability located in the Software form. Upgrade to 10.0.17.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…