Multiple Vulnerabilities Discovered in GLPI

📌 Multiple vulnerabilities were discovered in GLPI on 18 March 2026, as reported by CERT-FR. The flaws enable attackers to execute SQL injection (SQLi) and bypass security policies. No specific CVE identifiers, affected versions, or technical details such as attack vectors were provided in the notice. The vulnerabilities directly impact the security of GLPI deployments by allowing unauthorized data access or manipulation. The advisory was published by France’s national cybersecurity agency (ANSSI) via its CERT division. No additional impacts or mitigations were detailed in the notice.