We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
CSRF protection can be bypassed at many places, once user is logged into GLPI. Malicious website is so able to perform many actions on GLPI.
Upgrade to 9.5.6
None.
am0o0 Analyst
Impact
CSRF protection can be bypassed at many places, once user is logged into GLPI.
Malicious website is so able to perform many actions on GLPI.
Patches
Upgrade to 9.5.6
Workarounds
None.