{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-12T06:50:04.397","vulnerabilities":[{"cve":{"id":"CVE-2026-22821","sourceIdentifier":"security-advisories@github.com","published":"2026-02-12T19:15:51.883","lastModified":"2026-02-20T18:20:33.927","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"mreporting is the more reporting GLPI plugin. Prior to 1.9.4, there is a possible SQL injection on date change. This vulnerability is fixed in 1.9.4."},{"lang":"es","value":"mreporting es el plugin de GLPI de informes más completo. Antes de la versión 1.9.4, existe una posible inyección SQL al cambiar la fecha. Esta vulnerabilidad está corregida en la versión 1.9.4."}],"metrics":{"cvssMetricV31":[{"source":"security-advisories@github.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"security-advisories@github.com","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:glpi-project:more_reporting:*:*:*:*:*:glpi:*:*","versionEndExcluding":"1.9.4","matchCriteriaId":"F58196A1-5ADF-43F2-822F-C26037D06249"}]}]}],"references":[{"url":"https://github.com/pluginsGLPI/mreporting/commit/6f4a3caf9c1f7bbed1d910795d6e918d039f1f72","source":"security-advisories@github.com","tags":["Patch"]},{"url":"https://github.com/pluginsGLPI/mreporting/security/advisories/GHSA-24q7-h59q-33w8","source":"security-advisories@github.com","tags":["Vendor Advisory"]}]}}]}