In affected versions all assistance forms (Ticket/Change/Problem) permit sql injection on the actor fields. Reference: https://github.com/glpi-project/glpi/security/advisories/GHSA-9q9x-7xxh-w4cg
Created glpi tracking bugs for this issue: Affects: epel-all [bug 2106304]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.