CVE-2026-32312

UNKNOWN 0.0

GLPI: Unauthorized export of form structure

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

GLPI is a free asset and IT management software package. In versions 11.0.0 through 11.0.6, an authenticated user with forms READ permission can export the structure of unauthorized forms. This issue has been fixed in version 11.0.7.

CWE	CWE-862
Vendor	glpi-project
Product	glpi
Published	May 18, 2026
Last Updated	May 19, 2026

Stay Ahead of the Next One

Get instant alerts for glpi-project glpi

Be the first to know when new unknown vulnerabilities affecting glpi-project glpi are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

glpi-project / glpi

>= 11.0.0, < 11.0.7

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/glpi-project/glpi/security/advisories/GHSA-cg63-qchq-q626 github.com: https://github.com/glpi-project/glpi/releases/tag/11.0.7