In GLPI before version 9.4.6, there is a vulnerability that allows bypassing the open redirect protection based which is based on a regexp. This is fixed in version 9.4.6.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2020-05-05T21:20:12
Updated: 2020-05-15T04:06:22
Reserved: 2020-03-30T00:00:00
Link: CVE-2020-11034
JSON object: View
NVD Information
Status : Modified
Published: 2020-05-05T22:15:12.760
Modified: 2023-11-07T03:14:28.117
Link: CVE-2020-11034
JSON object: View
Redhat Information
No data.