Therob89

**Name of the Vulnerable Software and Affected Versions** GLPI (affected versions not specified) **Description** The issue is related to a lack of protection of the web page structure, potentially allowing a remote attacker to perform cross-site scripting attacks. There is a SQL injection vulnerability on the login page that can be exploited without requiring user credentials. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.