SQL Injection Vulnerability in GLPI Asset Management Software by GLPI Project

CVE-2026-25936

What is CVE-2026-25936?

A vulnerability exists in the GLPI Asset and IT management software that allows authenticated users to execute unauthorized SQL queries. This weakness affects versions 11.0.0 to 11.0.5, which can potentially lead to data leakage or modification. Version 11.0.6 includes a patch that addresses this issue and is recommended for all users. For more information, visit the advisory at the GLPI Project's GitHub link.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References