Uncategorized CVE-2019-13239 - July 4, 2019 - admin inc/user.class.php in GLPI before 9.4.3 allows XSS via a user picture. Source: NIST CVE-2019-13239