CVE-2022-39323
SQL Injection on REST API in GLPI
In short
GLPI's REST API has a SQL injection vulnerability in the user_token parameter that allows attackers to extract sensitive data through time-based attacks. This flaw lets unauthorized users bypass authentication and access or manipulate the system's database.
Technical detail
A time-based SQL injection vulnerability exists in the GLPI REST API's user_token authentication mechanism (CWE-89), allowing remote attackers to execute arbitrary SQL queries without authentication. The attack exploits insufficient input validation in the API endpoint, enabling data exfiltration through timing side-channels; patched in version 10.0.4.
Summary generated and translated by AI from the official description.
GLPI stands for Gestionnaire Libre de Parc Informatique. GLPI is a Free Asset and IT Management Software package that provides ITIL Service Desk features, licenses tracking and software auditing. Time based attack using a SQL injection in api REST user_token. This issue has been patched, please upgrade to version 10.0.4. As a workaround, disable login with user_token on API Rest.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected products
glpi-project · glpiWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →