VYPR
Get started
← All advisories
Unrated severityNVD Advisory· Published Aug 5, 2011· Updated Apr 29, 2026

CVE-2011-2720

CVE-2011-2720

Description

The autocompletion functionality in GLPI before 0.80.2 does not blacklist certain username and password fields, which allows remote attackers to obtain sensitive information via a crafted POST request.

Affected products

52
  • Glpi Project/Glpi52 versions
    cpe:2.3:a:glpi-project:glpi:*:*:*:*:*:*:*:*+ 51 more
    • cpe:2.3:a:glpi-project:glpi:*:*:*:*:*:*:*:*range: <=0.80.1
    • cpe:2.3:a:glpi-project:glpi:0.5:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.5:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.5:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.6:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.6:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.6:rc3:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.42:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.51:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.51a:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.65:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.65:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.65:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68:rc3:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68.1:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68.2:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.68.3:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.70:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.70:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.70:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.70:rc3:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.70.1:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.70.2:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.1:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.1:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.1:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.1:rc3:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.2:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.3:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.4:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.5:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.71.6:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72:rc1:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72:rc2:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72:rc3:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72.1:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72.2:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72.3:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.72.4:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.78:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.78.1:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.78.2:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.78.3:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.78.4:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.78.5:*:*:*:*:*:*:*
    • cpe:2.3:a:glpi-project:glpi:0.80:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

21

News mentions

0

No linked articles in our index yet.