{"vulnerability": "CVE-2023-34106", "sightings": [{"uuid": "c6734b0f-e0d3-4a7e-b52f-adcf222f8d29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34106", "type": "seen", "source": "https://t.me/cibsecurity/66001", "content": "\u203c CVE-2023-34106 \u203c\n\nGLPI is a free asset and IT management software package. Versions of the software starting with 0.68 and prior to 10.0.8 have an incorrect rights check on a on a file accessible by an authenticated user. This allows access to the list of all users and their personal information. Users should upgrade to version 10.0.8 to receive a patch.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-05T22:22:06.000000Z"}]}