Unrated severityNVD Advisory· Published May 5, 2020· Updated Aug 4, 2024
bypass of manageRedirect in GLPI
CVE-2020-11034
Description
In GLPI before version 9.4.6, there is a vulnerability that allows bypassing the open redirect protection based which is based on a regexp. This is fixed in version 9.4.6.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<9.4.6+ 1 more
- (no CPE)range: <9.4.6
- (no CPE)range: < 9.4.6
Patches
Vulnerability mechanics
References
3- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5WQMONZRWLWOXMHMYWR7A5Q5JJERPMVC/mitrevendor-advisoryx_refsource_FEDORA
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q4BG2UTINBVV7MTJRXKBQ26GV2UINA6L/mitrevendor-advisoryx_refsource_FEDORA
- github.com/glpi-project/glpi/security/advisories/GHSA-gxv6-xq9q-37hgmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.