High severity8.8OSV Advisory· Published Jul 2, 2018· Updated Jun 17, 2026
CVE-2018-13049
CVE-2018-13049
Description
The constructSQL function in inc/search.class.php in GLPI 9.2.x through 9.3.0 allows SQL Injection, as demonstrated by triggering a crafted LIMIT clause to front/computer.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 0.90, 0.90-RC1, 0.90-RC2, …
Patches
Vulnerability mechanics
References
1- github.com/glpi-project/glpi/issues/4270nvdThird Party Advisory
News mentions
0No linked articles in our index yet.