Main Vulnerability Database Exploits ID:12656 - Exploit for Path traversal in GLPI Inventory plugin - CVE-2022-31062

ID:12656 - Exploit for Path traversal in GLPI Inventory plugin - CVE-2022-31062

Published: April 27, 2026

Vulnerability identifier: #VU128155

Vulnerability risk: Medium

CVE-ID: CVE-2022-31062

CWE-ID: CWE-22

Exploitation vector: Remote access

Vulnerable software:
GLPI Inventory plugin

Link to public exploit:

https://www.exploit-db.com/exploits/51230/

Vulnerability description

The vulnerability allows a remote attacker to disclose sensitive information.

The vulnerability exists due to path traversal in b/deploy/index.php when handling requests to the public script. A remote attacker can send a specially crafted request to disclose sensitive information.

Remediation

Install security update from vendor's website.

ID:12656 - Exploit for Path traversal in GLPI Inventory plugin - CVE-2022-31062

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human