ยซ Changelog History


GLPI v9.5.2 Release Notes

Release Date: 2020-10-07 // over 3 years ago

  • ๐Ÿš€ This is a security release, upgrading is highly recommended

    ๐Ÿ›  Note: some of fixed vulnerabilities are present since a long time (0.68).

    ๐Ÿš€ Download it

    Non exhaustive list of changes:

    • ๐Ÿ”’ [security] SQL injection with a query parameter of user form (CVE-2020-15176)
    • ๐Ÿ”’ [security] Removal of .htaccess file in the files folder via a plugin endpoint (CVE-2020-15175)
    • ๐Ÿ”’ [security] Leakage issue with knowledge base (CVE-2020-15217)
    • ๐Ÿ”’ [security] Stored XSS in install script (CVE-2020-15177)
    • ๐Ÿ”’ [security] Minor SQL Injection in Search API (CVE-2020-15226)
    • several mailgate issues
    • several dashboards issues
    • dashboards improvements: personnal filters , new summary and articles widgets, ...
    • and more!

    ๐Ÿ‘€ See changelog for details.