Guilhem7

**Name of the Vulnerable Software and Affected Versions** GLPI versions 0.85 through 10.0.22 **Description** GLPI is an asset and IT management software package. An authenticated user can perform a SQL injection. This allows for potential unauthorized access or modification of data within the system. **Recommendations** Update to version 10.0.23 or later.

**Name of the Vulnerable Software and Affected Versions** goshs versions 0.3.4 through 1.0.4 **Description** The issue allows anyone to execute commands on the server when goshs is run without arguments. This is due to the `dispatchReadPump` function not checking the `-c` option, allowing arbitrary command execution through websockets. **Recommendations** For goshs versions 0.3.4 through 1.0.4, update to version 1.0.5 to resolve the issue. As a temporary workaround, consider disabling the `dispatchReadPump` function until a patch is available. Avoid running goshs without arguments to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** GLPI versions 9.5.0 through 10.0.16 **Description** The issue is related to incorrect session management in the GLPI system, which can allow a remote attacker to gain full access to the application by intercepting a session. An unauthenticated user can retrieve all session IDs and use them to steal any valid session. **Recommendations** For versions 9.5.0 through 10.0.16, update to version 10.0.17 to resolve the issue. As a temporary workaround, consider restricting access to the session management functionality until a patch is available.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.17 **Description** The issue is related to a lack of protection against SQL injection attacks in the GLPI system, which manages IT assets and incidents. An authenticated user can exploit multiple SQL injection vulnerabilities, one of which allows altering another user's account data and taking control of it. **Recommendations** For versions prior to 10.0.17, upgrade to version 10.0.17 to resolve the issue. As a temporary workaround, consider restricting access to sensitive user account data until the upgrade is applied.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.16 **Description** The issue is related to the GLPI system, which is an open-source asset and IT management software package providing ITIL Service Desk features, licenses tracking, and software auditing. An authenticated technician user can upload a malicious PHP script and hijack the plugin loader to execute this malicious script. This is due to external control of the file name or path. **Recommendations** For versions prior to 10.0.16, upgrade to 10.0.16 to resolve the issue. As a temporary workaround, consider restricting access to the plugin loader to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.10 **Description** The issue is related to the management of UI layout preferences in GLPI, which can be hijacked to lead to SQL injection. This injection can be used to take over an administrator account. The vulnerability is associated with incorrect neutralization of special elements used in SQL commands, allowing a remote attacker to capture an administrator account. **Recommendations** For versions prior to 10.0.10, users are advised to upgrade to version 10.0.10. As a temporary workaround, consider restricting access to the UI layout preferences management feature until a patch is available. Avoid using the vulnerable UI layout preferences management feature in the affected software until the issue is resolved. At the moment, there is no information about other workarounds for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.9 **Description** The issue is related to SQL injection via dashboards administration, allowing a remote attacker to execute arbitrary SQL queries. This can be triggered by an administrator. **Recommendations** For versions prior to 10.0.9, update to version 10.0.9 to resolve the issue. As a temporary workaround, consider restricting access to dashboards administration to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** GLPI versions prior to 10.0.15 **Description** The issue is related to a SQL injection vulnerability in the saved searches feature of GLPI, a Free Asset and IT Management Software package. An authenticated user can exploit this vulnerability to alter another user's account data and take control of it. The vulnerability allows a remote attacker to execute arbitrary SQL queries due to inadequate protection of the SQL query structure. **Recommendations** For versions prior to 10.0.15, update to version 10.0.15 to resolve the issue. As a temporary workaround, consider restricting access to the saved searches feature until the update is applied.