CVE-2026-25590 | glpi-project glpi-inventory-plugin up to 1.6.5 cross site scripting (GHSA-54×7-6fhx-3wmw)

A vulnerability identified as problematic has been detected in glpi-project glpi-inventory-plugin up to 1.6.5. The affected element is an unknown function. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2026-25590. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.VulDB Recent EntriesRead More