Description
Cross-site request forgery (CSRF) vulnerability in GLPI-PROJECT GLPI before 0.83.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
References (5)
Core 5
Core References
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2012/07/13/1
Issue Tracking x_refsource_confirm
https://forge.indepnet.net/issues/3707
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2012:132
Issue Tracking x_refsource_confirm
https://forge.indepnet.net/issues/3704
Various Sources x_refsource_confirm
https://forge.indepnet.net/projects/glpi/versions/771
Scores
EPSS
0.0020
EPSS Percentile
41.8%
Details
CWE
CWE-352
Status
published
Products (31)
glpi-project/glpi
0.5 (3 CPE variants)
glpi-project/glpi
0.6 (4 CPE variants)
glpi-project/glpi
0.20
glpi-project/glpi
0.21
glpi-project/glpi
0.30
glpi-project/glpi
0.31
glpi-project/glpi
0.40
glpi-project/glpi
0.41
glpi-project/glpi
0.42
glpi-project/glpi
0.51
... and 21 more
Published
Oct 09, 2012
Tracked Since
Feb 18, 2026