VYPR
High severity7.7OSV Advisory· Published Dec 26, 2024· Updated Jun 17, 2026

CVE-2024-45600

CVE-2024-45600

Description

Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. Prior to 1.21.13, an authenticated user can perform a SQL injection when the plugin is active. The vulnerability is fixed in 1.21.13.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.