{"id":430056,"date":"2024-03-13T09:54:44","date_gmt":"2024-03-13T08:54:44","guid":{"rendered":"https:\/\/glpi-project.org\/?p=430056"},"modified":"2025-06-16T13:15:14","modified_gmt":"2025-06-16T12:15:14","slug":"glpi-release-10-0-13","status":"publish","type":"post","link":"https:\/\/www.glpi-project.org\/fr\/glpi-release-10-0-13\/","title":{"rendered":"GLPI Release 10.0.13"},"content":{"rendered":"<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\" style=\"font-size:15px\"><p><strong>A new GLPI version is available!<\/strong><\/p><\/blockquote><p>This release fixes a few&nbsp;<strong>security issues<\/strong>&nbsp;that have been recently discovered. Update is recommended!<\/p><p>You can download the\u00a0<strong><a href=\"https:\/\/github.com\/glpi-project\/glpi\/releases\/download\/10.0.13\/glpi-10.0.13.tgz\" target=\"_blank\" rel=\"noopener\">GLP<\/a><a href=\"https:\/\/github.com\/glpi-project\/glpi\/releases\/download\/10.0.13\/glpi-10.0.13.tgz\" target=\"_blank\" rel=\"noreferrer noopener\">I 10.0.13 archive<\/a><\/strong>\u00a0on GitHub.<\/p><p>You will find below the list of security issues fixed in this bugfixes version:<\/p><ul class=\"wp-block-list\"><li>[SECURITY - high] SQL Injection in through the search engine (CVE-2024-27096)<\/li><li>[SECURITY - moderate] Blind SSRF using Arbitrary Object Instantiation (CVE-2024-27098)<\/li><li>[SECURITY - moderate] Stored XSS in dashboards (CVE-2024-27104)<\/li><li>[SECURITY - moderate] Reflected XSS in debug mode (CVE-2024-27914)<\/li><li>[SECURITY - moderate] Sensitive fields access through dropdowns (CVE-2024-27930)<\/li><li>[SECURITY - moderate] Users emails enumeration (CVE-2024-27937)<\/li><\/ul><p>Also, here is a short list of main changes done in this version:<\/p><ul class=\"wp-block-list\"><li>[FIX] Error when creating a Ticket with SLA\/OLA.<\/li><li>[FIX] Weekly recurrent reservations creation does not work.<\/li><\/ul><p>The&nbsp;<strong><a href=\"https:\/\/github.com\/glpi-project\/glpi\/milestone\/65?closed=1\" target=\"_blank\" rel=\"noreferrer noopener\">full changelog is available<\/a><\/strong>&nbsp;for more details.<\/p><p>We would like to thank all people who contributed to this new version and all those who contributes regularly to the GLPI project!<\/p><p>Regards.<\/p><div style=\"height:44px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div><div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\"><div class=\"wp-block-button\"><a class=\"wp-block-button__link\" href=\"https:\/\/glpi-project.org\/downloads\/\" target=\"_blank\" rel=\"noreferrer noopener\">Download GLPI<\/a><\/div><\/div>","protected":false},"excerpt":{"rendered":"<p>A new GLPI version is available! This release fixes a few&nbsp;security issues&nbsp;that have been recently discovered. Update is recommended! You can download the\u00a0GLPI 10.0.13 archive\u00a0on GitHub. You will find below the list of security issues fixed in this bugfixes version: [SECURITY - high] SQL Injection in through the search engine (CVE-2024-27096) [SECURITY - moderate] Blind [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"categories":[155],"tags":[120,22,86],"class_list":["post-430056","post","type-post","status-publish","format-standard","hentry","category-versions","tag-glpi-10-0-13","tag-new-release","tag-new-version-glpi"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/posts\/430056","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/comments?post=430056"}],"version-history":[{"count":1,"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/posts\/430056\/revisions"}],"predecessor-version":[{"id":436276,"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/posts\/430056\/revisions\/436276"}],"wp:attachment":[{"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/media?parent=430056"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/categories?post=430056"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.glpi-project.org\/fr\/wp-json\/wp\/v2\/tags?post=430056"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}