CVE-2019-10232
CRITICAL EXPLOITED NUCLEITeclib-edition Gestionnaire Libre DE Parc Informatique - SQL Injection
Title source: ruleDescription
Teclib GLPI through 9.3.3 has SQL injection via the "cycle" parameter in /scripts/unlock_tasks.php.
Nuclei Templates (1)
Teclib GLPI <= 9.3.3 - Unauthenticated SQL Injection
CRITICALby RedTeamBrasil
Scores
CVSS v3
9.8
EPSS
0.8873
EPSS Percentile
99.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
VulnCheck KEV
2025-06-07
CWE
CWE-89
Status
published
Products (1)
teclib-edition/gestionnaire_libre_de_parc_informatique
< 9.3.3
Published
Mar 27, 2019
Tracked Since
Feb 18, 2026