Medium severity6.5OSV Advisory· Published Mar 14, 2025· Updated Apr 15, 2026
CVE-2025-26626
CVE-2025-26626
Description
The GLPI Inventory Plugin handles various types of tasks for GLPI agents for the GLPI asset and IT management software package. Versions prior to 1.5.0 are vulnerable to reflective cross-site scripting, which may lead to executing javascript code. Version 1.5.0 fixes the issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.0.0, 1.0.1, 1.0.2, …+ 1 more
- (no CPE)range: 1.0.0, 1.0.1, 1.0.2, …
- (no CPE)range: <1.5.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.