CNNVD-202602-2099 Information

CNNVD ID

CNNVD-202602-2099

Related CVE

CVE-2026-22821

• CNNVD Published: 2026-02-12

Description (Chinese)

More reporting GLPI plugin是GLPI Project Plugins开源的一个报告生成插件。 More reporting GLPI plugin 1.9.4之前版本存在SQL注入漏洞，该漏洞源于日期更改时存在SQL注入问题。

Description (English)

More reporting GLPI plugin is an open-source report-generation plugin for GLPI Project Plugins. More reporting GLPI plugin 1.9.4 has an SQL injection loophole, which arises from SQL injection problems at date change.

Vulnerability Type

SQL注入

Affected Vendor

GLPI Project Plugins

Published

2026-02-12

Last Modified

2026-02-24

References

https://github.com/pluginsGLPI/mreporting/security/advisories/GHSA-24q7-h59q-33w8 https://github.com/pluginsGLPI/mreporting/commit/6f4a3caf9c1f7bbed1d910795d6e918d039f1f72 https://access.redhat.com/security/cve/cve-2026-22821

Patch

https://github.com/pluginsGLPI/mreporting/releases