๐Ÿ” CVE Alert

CVE-2026-53987

MEDIUM 6.4

GLPI 11 before 2.14.4 Tag Plugin Stored Cross-Site Scripting in Kanban Badge Rendering

CVSS Score
6.4
EPSS Score
0.3%
EPSS Percentile
26th

The Tag plugin for GLPI 11 before 2.14.4 stores the tag name without HTML sanitization and renders it into the Kanban badge markup via PluginTagTag::preKanbanContent() without output escaping, resulting in stored cross-site scripting. An authenticated user with TAG MANAGEMENT create or update rights can set a tag name containing HTML, which then executes in the browser of any user who opens the Kanban view of a ticket, problem, change, or project the tag is attached to.

CWE CWE-79
Vendor tag plugin
Product glpi 11
Published Jul 9, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for tag plugin glpi 11

Be the first to know when new medium vulnerabilities affecting tag plugin glpi 11 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
High
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

Tag plugin / GLPI 11
2.6.0 < 2.14.4

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/pluginsGLPI/tag/security/advisories/GHSA-6rpj-89c7-x2mh github.com: https://github.com/pluginsGLPI/tag/releases/tag/2.14.4 github.com: https://github.com/pluginsGLPI/tag github.com: https://github.com/pluginsGLPI/tag/commit/49e6b6eb5f83bcd84139a5e5ec54c0ddd14acc90

Credits

๐Ÿ” chapochapo