CVE-2025-52897 – GLPI Phishing Vulnerability in Planning Feature

CVE ID : CVE-2025-52897

Published : July 30, 2025, 2:15 p.m. | 1 hour, 14 minutes ago

Description : GLPI is a Free Asset and IT Management Software package. In versions 9.1.0 through 10.0.18, an unauthenticated user can send a malicious link to attempt a phishing attack from the planning feature. This is fixed in version 10.0.19.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…