CVE-2022-34126

The Activity plugin before 3.1.1 for GLPI allows reading local files via directory traversal in the front/cra.send.php file parameter.
Configurations

Configuration 1 (hide)

cpe:2.3:a:glpi-project:activity:*:*:*:*:*:glpi:*:*

History

No history.

Information

Published : 2023-04-16 03:15

Updated : 2024-02-28 20:13


NVD link : CVE-2022-34126

Mitre link : CVE-2022-34126

CVE.ORG link : CVE-2022-34126


JSON object : View

Products Affected

glpi-project

  • activity
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')