Sensitive Data: GLPI Default Login¶

Identifier: glpi_default_login

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner

Description¶

GLPI default login credentials were discovered. GLPI is an ITSM software tool that helps you plan and manage IT changes. This template checks if a default super admin account (glpi/glpi) is enabled.

Reference:

https://glpi-project.org/

Configuration¶

Example¶

Example configuration:

---
security_tests:
  glpi_default_login:
    assets_allowed:
    - REST
    - GRAPHQL
    - WEBAPP
    skip: false

Reference¶

`assets_allowed`¶

Type : List[AssetType]*

List of assets that this check will cover.

`skip`¶

Type : boolean

Skip the test if true.