GLPI Local File Include Vulnerability Network Vulnerability

Summary

GLPI is prone to a local file include vulnerability because it fails to adequately validate user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and execute arbitrary local scripts. This could allow the attacker to compromise the application and the computer other attacks are also possible. GLPI 0.83.7 is vulnerable. Other versions may also be vulnerable.

References

http://www.zeroscience.mk/en/vulnerabilities/ZSL-2013-5145.php

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat Windows Installer Privilege Escalation Vulnerability
Admbook PHP Code Injection Flaw
b2Evolution title SQL Injection
AdMentor Login Flaw
aflog Cookie-Based Authentication Bypass Vulnerability

Take action and discover your vulnerabilities