CVE Details
Basic Information
| Title | glpi-screenshot-plugin exposes local files in /ajax/screenshot.php |
|---|---|
| Type | cve |
| Published | 2025-08-05T00:08:37.728Z |
| Modified | 2025-08-05T00:08:37.728Z |
Product Information
| Vendor | cconard96 |
|---|---|
| Product | glpi-screenshot-plugin |
| Version | < 2.0.2 |
CVSS Information
| Base Score | 7.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N |
AI Analysis
| AI Description | The glpi-screenshot-plugin allows users to take screenshots or screen recordings. In versions below 2.0.2, an authenticated user can exploit the /ajax/screenshot.php endpoint to leak files or use PHP wrappers, fixed in version 2.0.2. |
|---|---|
| AI Severity | Medium |
| AI Vendor | GLPI Community |
| AI Product | glpi-screenshot-plugin |
| AI Version | < 2.0.2 |
Affected Products
- cconard96 glpi-screenshot-plugin < 2.0.2
Additional Information
| CWE List | CWE-73 |
|---|---|
| Source | GitHub_M |
Description
The glpi-screenshot-plugin allows users to take screenshots or screens recording directly from GLPI. In versions below 2.0.2, authenticated user can use the /ajax/screenshot.php endpoint to leak files from the system or use PHP wrappers. This is fixed in version 2.0.2.