We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
A logged user from any profile can hijack the Kanban feature to alter any user field, and end-up with stealing its account.
Upgrade to 10.0.10.
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.
Impact
A logged user from any profile can hijack the Kanban feature to alter any user field, and end-up with stealing its account.
Patches
Upgrade to 10.0.10.
For more information
If you have any questions or comments about this advisory, mail us at glpi-security@ow2.org.