GLPI Bypass Vulnerability Scanner CVE-2020-11034

Details

Stay Up To Date

Follow @secforeveryone

Asset Type

DOMAIN,IP,URL

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

GLPI Bypass Vulnerability Scanner CVE-2020-11034 Detail

If you are using GLPI on your system, we suggest you to check if it is vulnerable or not.

What is GLPI Bypass Vulnerability?

GLPI is an open source IT Asset Management, issue tracking system and service desk system written in PHP. In GLPI before version 9.4.6, there is a vulnerability that allows bypassing the open redirect protection based which is based on a regexp.

Some Advice for Common Problems

Update GLPI version 9.4.6. or higher.

Need a Full Assessment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service