Cedric-Anne

**Name of the Vulnerable Software and Affected Versions** GLPI versions 11.0.0 through 11.0.6 **Description** An issue exists where a technician can store a Cross-Site Scripting (XSS) payload within ITIL costs. XSS is a type of security flaw that allows an attacker to inject malicious scripts into web pages viewed by other users. **Recommendations** Update to version 11.0.7.

**Name of the Vulnerable Software and Affected Versions** GLPI versions 9.5.0 through 10.0.18 **Description** GLPI is an Asset and IT Management Software package. A technician can utilize a malicious payload to trigger a stored Cross-Site Scripting (XSS) issue on the project's kanban. **Recommendations** Update to version 10.0.19 or later.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.10 **Description** The issue is related to an unlimited file upload vulnerability in the GLPI system, which can be exploited by a remote attacker to upload arbitrary files to the system. This can potentially allow the deletion of some files by diverting the document upload process. The GLPI system is a free asset and IT management software package that provides ITIL Service Desk features, licenses tracking, and software auditing. **Recommendations** For versions prior to 10.0.10, upgrade to version 10.0.10 to resolve the issue. As a temporary workaround, consider restricting access to the file upload functionality until the upgrade is applied. Avoid using the file upload feature in the affected system until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** GLPI versions 0.60 through 9.5.12 GLPI versions 10.0.0 through 10.0.6 **Description** The issue is related to insufficient cleaning of user data when processing external links, allowing a user to inject and execute arbitrary HTML code and scripts in the user's browser within the context of the vulnerable website. This can enable a remote attacker to steal potentially confidential information, modify the appearance of web pages, and perform phishing and drive-by download attacks. **Recommendations** For GLPI versions 0.60 through 9.5.12, update to version 9.5.13 to resolve the issue. For GLPI versions 10.0.0 through 10.0.6, update to version 10.0.7 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** GLPI versions 10.0.0 through 10.0.5 **Description** The issue allows unauthorized access to inventory files. If anonymous access to FAQ is allowed, inventory files become accessible by unauthenticated users. **Recommendations** For GLPI versions 10.0.0 through 10.0.5, update to version 10.0.6 to resolve the issue. As a temporary workaround, consider disabling native inventory and delete inventory files from the server, specifically from the `files/ inventory` location.

**Name of the Vulnerable Software and Affected Versions** SCCM plugin for GLPI versions prior to 2.3.0 **Description** The SCCM plugin for GLPI has an issue where the Configuration page is publicly accessible in read-only mode in versions prior to 2.3.0. This issue is patched in version 2.3.0. **Recommendations** For versions prior to 2.3.0, update to version 2.3.0 to resolve the issue. As a temporary workaround, consider restricting access to the Configuration page until the update is applied.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.13 **Description** The issue is related to improper input neutralization during web page creation, allowing a remote attacker to conduct a cross-site scripting (XSS) attack. A user with rights to create and share dashboards can build a dashboard containing javascript code, and any user who opens this dashboard will be subject to an XSS attack. **Recommendations** For versions prior to 10.0.13, update to version 10.0.13 to resolve the issue. As a temporary workaround, consider restricting access to dashboard creation and sharing features to minimize the risk of exploitation. Avoid using dashboards that contain javascript code until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Plugin versions prior to 1.0.2 **Description** A plugin public script can be used to read the content of system files. **Recommendations** For versions prior to 1.0.2, upgrade to version 1.0.2. As a temporary workaround, consider deleting the `b/deploy/index.php` file if the deploy feature is not used.