SQL Injection in GLPI's Condition Rule Field via front/rulesengine.test.php

SQL Injection in GLPI's Condition Rule Field via front/rulesengine.test.php

CVE-2017-11475 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

GLPI before 9.1.5.1 has SQL Injection in the condition rule field, exploitable via front/rulesengine.test.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.