GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset
and IT Management Software package, that provides ITIL Service Desk
features, licenses tracking and software auditing. Affected versions have
been found to be vulnerable to a SQL injection attack which an attacker
could leverage to simulate an arbitrary user login. Users are advised to
upgrade to version 10.0.3. Users unable to upgrade should disable the
`Enable login with external token` API configuration.Read More