All 3 CVE vulnerabilities found in fields, with AI-generated Chinese analysis, references, and POCs.
Vendor: pluginsGLPI
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-23489 | Fields GLPI plugin vulnerable to RCE in dropdown generation CWE-20 | 9.1 | Critical | 2026-03-16 |
| CVE-2024-45600 | Fields GLPI plugin has an Authenticated SQL Injection CWE-89 | 7.7 | High | 2024-12-26 |
| CVE-2023-28855 | Fields GLPI plugin vulnerable to unauthorized write access to additional fields CWE-269 | 6.5 | Medium | 2023-04-05 |
All 3 known CVE vulnerabilities affecting fields with full Chinese analysis, references, and POCs where available.