Unrated severityNVD Advisory· Published Jan 28, 2022· Updated May 5, 2025
Reflected XSS using reload button in GLPI
CVE-2022-21719
Description
GLPI is a free asset and IT management software package. All GLPI versions prior to 9.5.7 are vulnerable to reflected cross-site scripting. Version 9.5.7 contains a patch for this issue. There are no known workarounds.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- GLPI/GLPIdescription
- Range: <9.5.7
Patches
Vulnerability mechanics
References
3- github.com/glpi-project/glpi/commit/e9b16bc8e9b61ebb2d35b96b9c71cd25c5af9e48mitrex_refsource_MISC
- github.com/glpi-project/glpi/releases/tag/9.5.7mitrex_refsource_MISC
- github.com/glpi-project/glpi/security/advisories/GHSA-6cj4-g839-gj5jmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.