Annfalotaibi

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.10 **Description** The issue is related to the insecure management of privileges in the Kanban feature of the GLPI system, which can be exploited by a remote attacker to gain unauthorized access to any user's account. This can allow the attacker to hijack the Kanban feature, alter any user field, and potentially steal user accounts. **Recommendations** For versions prior to 10.0.10, upgrade to version 10.0.10 to resolve the issue. As a temporary workaround, consider restricting access to the Kanban feature until the upgrade is applied.