Date published: 2015-04-14T14:59:00.073-04:00
Date last modified: 2015-04-15T11:19:01.667-04:00
CVSS Score: 5.0
Principal attack vector: NETWORK
Reference URL: http://advisories.mageia.org/MGASA-2015-0017.html
Summary: GLPI before 0.84.7 does not properly restrict access to cost information, which allows remote attackers to obtain sensitive information via the cost criteria in the search bar.