Unrated severityNVD Advisory· Published Nov 26, 2020· Updated Aug 4, 2024
CVE-2020-27662
CVE-2020-27662
Description
In GLPI before 9.5.3, ajax/comments.php has an Insecure Direct Object Reference (IDOR) vulnerability that allows an attacker to read data from any database table (e.g., glpi_tickets, glpi_users, etc.).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- GLPI/GLPIdescription
- Range: <9.5.3
Patches
Vulnerability mechanics
References
1- github.com/glpi-project/glpi/security/advisories/GHSA-wq38-gwxp-8p5pmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.