Contato
EN FR
Contato
Minha conta
EN FR
EN FR
29.06.26

Security Advisory: Update Required for Multiple GLPI Community Plugins

We are notifying the GLPI community of several security vulnerabilities identified in a number of community plugins. Updates are available and should be deployed promptly on all affected instances.

Affected Plugins and Vulnerabilities

The vulnerabilities identified cover a range of severity levels, including a critical Remote Code Execution (RCE) flaw in GenericObject (CVSS 8.9), multiple SQL injection and Cross-Site Scripting issues across several plugins, and access control malfunctions in Escalade, Credit, and Glpinventory.

Recommendations

We strongly recommend planning and deploying updates for all affected plugins as soon as possible on your GLPI instances, in order to maintain an optimal level of security and reduce the risk of exploitation.

Priority should be given to GenericObject (CVSS 8.9 – Critical), as it exposes instances to remote code execution.

GLPI Network Cloud Platforms

All fixes related to the plugins listed above have already been deployed on GLPI Network Cloud Public and GLPI Network Cloud Private platforms. No action is required for instances hosted in our managed environments.

Should you require technical assistance or additional information, please contact us.

Você também pode gostar estes artigos

29.06.26
We are notifying the GLPI community of several security vulnerabilities identified in a number of community plugins. Updates are available and should be deployed promptly on all affected instances. Affected Plugins and Vulnerabilities The vulnerabilities identified cover a range of severity levels, including a critical Remote Code Execution (RCE) flaw in GenericObject (CVSS 8.9), multiple […]
25.06.26
On Friday, June 12, the whole Teclib' team came together in Caen, home to our technical crew, for the Teclib' Day: a packed day of half-year reviews, upcoming projects, and genuine team bonding. Morning: Half-Year Reviews at MoHo The day started at MoHo, a creative coworking space in the heart of Caen, over coffee and […]
24.06.26
Two new GLPI versions are available 11.0.8 and 10.0.26 releases fix several critical security issues that have been recently discovered. Update is stronglyrecommended! Many bug fixes have also been made, read the changelogs for more details: You can download the new archives on GitHub: You will find below the list of security issues fixed in theses bugfixes versions: […]
23.06.26
You can download it on the GLPI Agent github project: https://github.com/glpi-project/glpi-agent/releases/tag/1.18 This new version is essentially a security fix release for the following security issues: The release also includes few bug fixes: You can check changes details in the official online Changelog available here: https://github.com/glpi-project/glpi-agent/blob/1.18/Changes About packaging, here is what you should retain: This time, we strongly […]
17.06.26
We are pleased to announce our new Silver GLPI Network partner in Poland: OpenIT. OpenIT is a Polish IT services company dedicated to helping businesses and institutions run their technology reliably, securely and without unnecessary complexity. From helpdesk and server administration to cybersecurity, Microsoft 365, virtualization and cloud solutions, OpenIT provides end-to-end IT support tailored […]
10.06.26
Congratulations! We are pleased to announce our new Silver GLPI Network partner in Switzerland: Forfirm Consulting Sagl. Founded in 2014, Forfirm is a consulting firm specializing in ICT & Digital, Finance, and Governance, Risk & Compliance (GRC). With offices in Zurich and Lugano, the company operates at the heart of the Swiss business ecosystem, supporting […]
03.06.26
Congratulations! We are pleased to announce our new Silver GLPI Network partner in Japan: HOGO Japan . HOGO Japan provides IT support, system management, and digital operations services to businesses operating in Japan — including financial institutions, industrial companies, corporate offices, and customer-facing service businesses. With a strong focus on reliability and responsiveness, they help […]
02.06.26
We are pleased to announce the availability of the beta version of the Nutanix plugin for GLPI 10 and GLPI 11. This beta release is open to the entire GLPI community. Its goal is to let users test the plugin across a variety of environments and use cases — and your feedback is what will […]
25.05.26
We are pleased to announce our new Silver GLPI Network partner in Ecuador: Bytebloom EC. Bytebloom EC is an Ecuadorian company specializing in automation, IT service management, monitoring, and observability. Based in Ecuador, they support both public and private organizations in streamlining and optimizing their technology operations. Their expertise in ITSM and IT infrastructure management […]
22.05.26
Congratulations! We are happy to announce our new Silver GLPI Network partner in Brazil: Pronet We are pleased to announce our new Silver GLPI Network partner in Peru: Comutel Perú. Comutel Perú is an infrastructure and IT solutions provider focused on the Peruvian enterprise market. The company specializes in the distribution of strategic technologies designed […]
27.05.26
Modern IT organizations depend on a growing network of external providers: cloud platforms, SaaS vendors, hardware suppliers, and managed service partners. Managing these relationships effectively has become a core discipline in IT Service Management. This article explores Supplier Management through the ITIL 4® framework, and shows how GLPI turns this practice into a concrete, integrated […]
20.05.26
In October 2025, we released a new tool to help you understand the environmental impact of operating digital services — computers, servers, monitors, mobile devices, and network devices. The plugin Carbon, available to everyone via the GLPI Marketplace and our project's GitHub, will outline the carbon footprint of your company's digital assets. Everybody has an […]
18.05.26
Por anos, uma comunidade global de integradores tem sido a espinha dorsal do sucesso do GLPI. Muitos trabalham de forma independente, prestando serviços de alta qualidade aos seus clientes. Mas à medida que o ecossistema cresce, também cresce a necessidade de reconhecimento profissional e suporte direto do editor. Qual é o status de registrado? O status Registrado é o ponto de entrada oficial na Teclib' […]
13.05.26
Temos o prazer de anunciar que o Plugin Carbon para GLPI 1.2.0 está agora disponível. Desenvolvido como parte do Projeto IEN (Impacto Ambiental do Numérico) em colaboração com a IRT SystemX, Teclib' e outros parceiros, este plugin ajuda as equipes de TI a avaliar a pegada ambiental de seus ativos diretamente do GLPI. O que há de novo Esta versão traz [significativas]
06.05.26
Seu CEO pergunta por que os incidentes no departamento financeiro estão demorando duas vezes mais para serem fechados. Você sabe a resposta. Você viveu nesses tickets por semanas. Mas saber não é o mesmo que mostrar, e sem um dashboard adequado, o trabalho permanece invisível. Essa é a lacuna que o plugin Advanced GLPI Dashboards […].
29.04.26
Duas novas versões do GLPI estão disponíveis! Hoje, lançamos as versões 11.0.7 e 10.0.25. Esses lançamentos contêm correções de segurança e incentivamos você a atualizar. Muitas correções de bugs também foram feitas. Leia os changelogs para mais detalhes: Você pode baixar os novos arquivos no GitHub: Você encontrará abaixo a lista de problemas de segurança corrigidos em […]
28.04.26
Parabéns! Temos o prazer de anunciar nosso novo parceiro Silver GLPI Network no Brasil: Pronet Com seus 35 anos de experiência na indústria de TI, a Pronet construiu uma sólida reputação como especialista confiável em suporte técnico e Gerenciamento de Serviços de TI (ITSM). Baseada em uma abordagem estruturada de processos, métricas e atendimento ao cliente, a Pronet ajuda […]
21.04.26
Parabéns! Temos o prazer de anunciar nosso novo parceiro Silver GLPI Network na França: Reel IT Fundada há 20 anos, a Reel IT é um grupo de TI francês especializado em Inteligência Artificial, Cibersegurança e Infraestrutura. Reconhecido como um dos líderes em excelência técnica nessas áreas, o grupo atende a uma ampla gama de clientes em […]
15.04.26
Parabéns! Temos o prazer de anunciar nosso novo parceiro Silver GLPI Network na Sérvia: Poko ITS. A Poko ITS é uma empresa de TI confiável baseada na Sérvia, especializada em soluções ITSM e ITAM construídas em torno do GLPI. Desde consultoria inicial e design de arquitetura até implantação, integração e automação avançada, eles fornecem um espectro completo de serviços para [...]
14.04.26
O GLPI marcou presença na GITEX Africa 2026, em Marrakech, em uma edição definida por encontros estratégicos, novas parcerias e uma presença crescente no continente africano. O que é a GITEX Africa e por que o GLPI esteve presente? A GITEX Africa é a principal exposição de tecnologia do continente africano, reunindo milhares de profissionais, tomadores de decisão, startups e […]
1 2 3 ... 19
chevron-right
LinkedIn Facebook Pinterest youtube rss Twitter Instagram facebook-em branco rss-em branco linkedin-em branco Pinterest youtube Twitter Instagram