CVE-2020-15176SQL Injection in Glpi

CWE-89SQL Injection4 documents2 sources
Severity
8.6HIGHNVD
EPSS
0.3%
top 48.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Glpi-project Glpi
Timeline
PublishedOct 7
Latest updateOct 8

Description

In GLPI before version 9.5.2, when supplying a back tick in input that gets put into a SQL query,the application does not escape or sanitize allowing for SQL Injection to occur. Leveraging this vulnerability an attacker is able to exfiltrate sensitive information like passwords, reset tokens, personal details, and more. The issue is patched in version 9.5.2

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:NExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

NVDglpi-project/glpi< 9.5.2
CVEListV5glpi-project/glpi>= 0.6.8, < 9.5.2

Patches

Patch: github.comPatch: github.com

💬Community

3
Bugzilla
CVE-2020-15176 glpi: application does not escape or sanitize leads to sql injection and information disclosure [fedora-all]2020-10-08
Bugzilla
CVE-2020-15176 glpi: application does not escape or sanitize leads to sql injection and information disclosure [epel-7]2020-10-08
Bugzilla
CVE-2020-15176 glpi: application does not escape or sanitize leads to sql injection and information disclosure2020-10-08