{"id":426174,"date":"2023-07-05T09:52:05","date_gmt":"2023-07-05T07:52:05","guid":{"rendered":"https:\/\/glpi-project.org\/?p=426174"},"modified":"2025-06-16T13:17:46","modified_gmt":"2025-06-16T12:17:46","slug":"version-glpi-10-0-8","status":"publish","type":"post","link":"https:\/\/www.glpi-project.org\/en\/version-glpi-10-0-8\/","title":{"rendered":"New version GLPI 10.0.8 is available"},"content":{"rendered":"<p>A new GLPI version is available.<\/p><p>This release fixes several security issues that have been recently discovered. Update is recommended!<\/p><p>You can download the&nbsp;<strong><a href=\"https:\/\/github.com\/glpi-project\/glpi\/releases\/download\/10.0.8\/glpi-10.0.8.tgz\" target=\"_blank\" rel=\"noreferrer noopener\">GLPI 10.0.8 archive<\/a><\/strong>&nbsp;on GitHub.<\/p><p>You will find below the list of security issues fixed in this bugfixes version:<\/p><ul class=\"wp-block-list\"><li class=\"\">[SECURITY - High] SQL injection via inventory agent request (CVE-2023-35924).<\/li><li class=\"\">[SECURITY - High] SQL injection through Computer Virtual Machine information (CVE-2023-36808).<\/li><li class=\"\">[SECURITY - High] Unauthorized access to Dashboard data (CVE-2023-35939).<\/li><li class=\"\">[SECURITY - High] Unauthenticated access to Dashboard data (CVE-2023-35940).<\/li><li class=\"\">[SECURITY - Moderate] Reflected XSS in search pages (CVE-2023-34244).<\/li><li class=\"\">[SECURITY - Moderate] Unauthorized access to knowledge base items (CVE-2023-34107).<\/li><li class=\"\">[SECURITY - Moderate] Unauthorized access to user data (CVE-2023-34106).<\/li><\/ul><p>Also, here is a short list of main changes done in this version:<\/p><ul class=\"wp-block-list\"><li class=\"\">[FEATURE] Improve mail grouping (#14296)<\/li><li class=\"\">[FEATURE] Add deleted status in item\u2019s header (#14382)<\/li><li class=\"\">[FEATURE] Add option to control the display of dropdowns labels (#14472)<\/li><li class=\"\">[FEATURE] Permits to check DB schema from GLPI versions &gt;= 0.80 (#14666)<\/li><li class=\"\">[FIX] Improve performance of plugins init (#14511)<\/li><li class=\"\">[FIX] Improve performance of kanban views (#14525, #14599, #14764)<\/li><li class=\"\">[FIX] Ldap issues with PHP versions &gt;= 8.1 (#14561)<\/li><li class=\"\">[FIX] SLA waiting time duration (#14937)<\/li><li class=\"\">[FIX] Notification encoding for MS Outlook (#14959)<\/li><li class=\"\">A lot of fixes in native inventory<\/li><\/ul><p>The&nbsp;<strong><a href=\"https:\/\/github.com\/glpi-project\/glpi\/milestone\/60?closed=1\" target=\"_blank\" rel=\"noreferrer noopener\">full changelog is available<\/a><\/strong>&nbsp;for more details.<\/p><p>We would like to thank all people who contributed to this new version and all those who contributes regularly to the GLPI project!<\/p><p>Regards.<a href=\"https:\/\/hedgedoc.teclib.com\/#Long-FR\" target=\"_blank\" rel=\"noopener\"><\/a><\/p>","protected":false},"excerpt":{"rendered":"<p>A new GLPI version is available. This release fixes several security issues that have been recently discovered. Update is recommended! You can download the&nbsp;GLPI 10.0.8 archive&nbsp;on GitHub. You will find below the list of security issues fixed in this bugfixes version: [SECURITY - High] SQL injection via inventory agent request (CVE-2023-35924). [SECURITY - High] SQL [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[155],"tags":[7,85,86],"class_list":["post-426174","post","type-post","status-publish","format-standard","hentry","category-versions","tag-glpi","tag-glpi-10-0-8-2","tag-new-version-glpi"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/posts\/426174","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/comments?post=426174"}],"version-history":[{"count":1,"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/posts\/426174\/revisions"}],"predecessor-version":[{"id":436328,"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/posts\/426174\/revisions\/436328"}],"wp:attachment":[{"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/media?parent=426174"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/categories?post=426174"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.glpi-project.org\/en\/wp-json\/wp\/v2\/tags?post=426174"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}