Romain B.

1 exploit Active since Feb 2026
CVE-2026-22821 WRITEUP MEDIUM WRITEUP
more_reporting < 1.9.4 - SQL Injection via Date Change
mreporting is the more reporting GLPI plugin. Prior to 1.9.4, there is a possible SQL injection on date change. This vulnerability is fixed in 1.9.4.
CVSS 4.9