Software
Combodo iTopSSRF through arbitrary PHP class instantiation in the user portal in Combodo iTop
Combodo iTopUsers enumeration allowed through Rest API in Combodo iTop
Combodo iTopiTop hub connector Information disclosure
Combodo iTopCSRF security issue on CSV import in Combodo iTop
Combodo iTopCross-site Scripting vulnerability in link CSV import in Combodo iTop
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopCross-site Scripting vulnerability on pages/ajax.render.php in Combodo iTop
Combodo iTopCross-site Scripting vulnerability on pages/ajax.searchform.php in Combodo iTop
Combodo iTopCross-site Scripting vulnerability in the run_query.php page in Combodo iTop
CVE-2023-47489CSV injection in export as csv in Combodo iTop v.3.1.0-2-11973 allows a local attacker to execute ar…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopiTop XSS vulnerability on pages/preferences.php
Combodo iTopCombodo iTop's weak password reset token leads to account takeover
Combodo iTopAuthenticated users of Combodo iTop can take over any account
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopStored Cross-site Scripting in Combodo iTop
Combodo iTopXSS in csvimport in 3.0.0-beta versions
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopPossible Cross-Site Request Forgery in Combodo iTop
Combodo iTopUnauthorized setup leads to SSRF in Combodo/iTop
Combodo iTopNo CSRF form token cleanup on Windows servers
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopAny user can see any fields (including mailbox password) with GroupBy Dashlet
Combodo iTopCommand Injection vulnerability in the Setup Wizard
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopAdmin pages are cached and can be embedded
Combodo iTopInformation disclosure vulnerability in iTop
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Combodo iTopiTop 2.2.0 through 2.6.0 allows remote attackers to cause a denial of service (application outage) v…
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.