Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2026-22044
CVE-2026-22044
GLPI is a free asset and IT management software package. From version 0.85 to before 10.0.23, an authenticated user can perform a SQL injection. This issue has been patched in version 10.0.23.
Published Feb 5, 2026
https://github.com/glpi-project/glpi/security/advisories/GHSA-569q-j526-w385
CVSS Score
High
8.8
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
rpm
glpi
0.90.5-1.el7
rpm
glpi
0.90.5-2.el7
1-2 of 2
CVE-2026-22044 | Components Impacted | Sonatype Guide | Sonatype Guide
