Medium severity4.3NVD Advisory· Published Apr 6, 2021· Updated Jun 17, 2026
CVE-2021-30144
CVE-2021-30144
Description
The Dashboard plugin through 1.0.2 for GLPI allows remote low-privileged users to bypass access control on viewing information about the last ten events, the connected users, and the users in the tech category. For example, plugins/dashboard/front/main2.php can be used.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- GLPI/GLPIdescription
- Range: <=1.0.2
Patches
Vulnerability mechanics
References
2- github.com/Kitsun3Sec/exploits/tree/master/cms/GLPI/dashboard-pluginnvdThird Party Advisory
- plugins.glpi-project.orgnvdVendor Advisory
News mentions
0No linked articles in our index yet.