Headline
CVE-2022-31082: Merge pull request from GHSA-q6m7-h6rj-5wmw · glpi-project/glpi-inventory-plugin@0b805ca
GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. glpi-inventory-plugin is a plugin for GLPI to handle inventory management. In affected versions a SQL injection can be made using package deployment tasks. This issue has been resolved in version 1.0.2. Users are advised to upgrade. Users unable to upgrade should delete the front/deploypackage.public.php file if they are not using the deploy tasks feature.
@@ -35,6 +35,8 @@
die(“Sorry. You can’t access directly to this file”);
}
use Glpi\Toolbox\Sanitizer;
/**
* Manage the deploy packages.
*/
@@ -1889,11 +1891,11 @@ public function deployToComputer($computers_id, $packages_id, $users_id)
//Add the new task
$input = [
‘name’ => '[deploy on demand] ' . $this->fields[‘name’],
‘entities_id’ => $computer->fields[‘entities_id’],
‘reprepare_if_successful’ => 0,
‘is_deploy_on_demand’ => 1,
‘is_active’ => 1,
‘name’ => '[deploy on demand] ' . Sanitizer::dbEscape($this->fields[‘name’]),
‘entities_id’ => $computer->fields[‘entities_id’],
‘reprepare_if_successful’ => 0,
‘is_deploy_on_demand’ => 1,
‘is_active’ => 1,
];
$tasks_id = $pfTask->add($input);