Troubledconqueror

**Name of the Vulnerable Software and Affected Versions** GLPI Inventory Plugin versions prior to 1.6.6 **Description** The GLPI Inventory Plugin manages network discovery, inventory, software deployment, and data collection for GLPI agents. A reflected cross-site scripting (XSS) issue exists in task jobs. The vulnerability allows an attacker to inject malicious scripts into web pages viewed by other users. The issue is present in versions before 1.6.6. **Recommendations** Update to GLPI Inventory Plugin version 1.6.6 or later.