High severity7.7OSV Advisory· Published Dec 26, 2024· Updated Jun 17, 2026
CVE-2024-45600
CVE-2024-45600
Description
Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. Prior to 1.21.13, an authenticated user can perform a SQL injection when the plugin is active. The vulnerability is fixed in 1.21.13.
Affected products
2- Range: 0.85-beta-6, 0.90-1.0, 0.90-1.1, …
- Range: <1.21.13
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.