{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-14T12:42:33.234","vulnerabilities":[{"cve":{"id":"CVE-2024-45600","sourceIdentifier":"security-advisories@github.com","published":"2024-12-26T22:15:13.583","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Fields is a GLPI plugin that allows users to add custom fields on GLPI items forms. Prior to 1.21.13, an authenticated user can perform a SQL injection when the plugin is active. The vulnerability is fixed in 1.21.13."},{"lang":"es","value":"Fields es un complemento GLPI que permite a los usuarios agregar campos personalizados en los formularios de elementos GLPI. Antes de la versión 1.21.13, un usuario autenticado podía realizar una inyección SQL cuando el complemento estaba activo. La vulnerabilidad se solucionó en la versión 1.21.13."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Secondary","description":[{"lang":"en","value":"CWE-89"}]}],"references":[{"url":"https://github.com/pluginsGLPI/fields/commit/eb927b0f084ee4ef6c87ab2eb7a15e99369e74ae#diff-a7024a397fba9a026157683da73cc675ec6b73bd900374b3836bcdc76ec7bd5cR1166","source":"security-advisories@github.com"},{"url":"https://github.com/pluginsGLPI/fields/security/advisories/GHSA-wwxw-64g6-2992","source":"security-advisories@github.com"}]}}]}