CVE-2016-7507

Severity CVSS v4.0:
Pending analysis
Type:
CWE-352 Cross-Site Request Forgery (CSRF)
Publication date:
19/07/2017
Last modified:
20/04/2025

Description

Cross-Site Request Forgery (CSRF) vulnerability in GLPI 0.90.4 allows remote authenticated attackers to submit a request that could lead to the creation of an admin account in the application.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:glpi-project:glpi:0.90.4:*:*:*:*:*:*:*