cve/CVE-2020-27663.md at eda58812c5773678e9432b65209fee245db925e7

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

688 B

Raw Blame History

CVE-2020-27663

Description

In GLPI before 9.5.3, ajax/getDropdownValue.php has an Insecure Direct Object Reference (IDOR) vulnerability that allows an attacker to read data from any itemType (e.g., Ticket, Users, etc.).

POC

Reference

No PoCs from references.

Github

https://github.com/hectorgie/PoC-in-GitHub
https://github.com/indevi0us/indevi0us

688 B Raw Blame History

CVE-2020-27663

Description

POC

Reference

Github

688 B

Raw Blame History