{"id":"CVE-2019-1010307","details":"GLPI GLPI Product 9.3.1 is affected by: Cross Site Scripting (XSS). The impact is: All dropdown values are vulnerable to XSS leading to privilege escalation and executing js on admin. The component is: /glpi/ajax/getDropDownValue.php. The attack vector is: 1- User Create a ticket , 2- Admin opens another ticket and click on the \"Link Tickets\" feature, 3- a request to the endpoint fetches js and executes it.","modified":"2026-05-15T11:11:58.027389Z","published":"2019-07-15T18:15:12.007Z","references":[{"type":"ADVISORY","url":"https://github.com/glpi-project/glpi/releases/tag/9.3.1"},{"type":"EVIDENCE","url":"https://github.com/glpi-project/glpi/blob/9.4/bugfixes/ajax/getDropdownValue.php"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/glpi-project/glpi","events":[{"introduced":"0"},{"last_affected":"a9d1277b66cd614c656faf3fd6944456ee316c55"}],"database_specific":{"cpe":"cpe:2.3:a:glpi-project:glpi:9.3.1:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"last_affected":"9.3.1"}]}}],"versions":["9.3.1","9.3.0","9.3-RC2","9.3-RC1","9.3-beta","9.1","9.1-RC2","9.1-RC1","0.90","0.90-RC2","0.90-RC1","0.90-beta2","0.90-beta1"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-1010307.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}]}