Lucene search
China National Vulnerability DatabaseCNVD-2021-54385HistoryJul 23, 2021 - 12:00 a.m.
Combodo iTop Cross-Site Request Forgery Vulnerability (CNVD-2021-54385)
2021-07-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
combodo itop
cross-site request forgery
vulnerability
itil
windows servers
event management
configuration management
issue management
EPSS
0.001
Percentile
31.5%
Combodo iTop is a set of open source web applications developed by Combodo France based on ITIL and used for daily operations in IT environments. The application provides event management, configuration management and issue management functions.Combodo iTop versions prior to 2.7.4 are vulnerable to cross-site request forgery, which allows malicious users to reuse CSRF tokens because they are not cleaned on Windows servers. No detailed vulnerability details are currently available.
Related
osv
osv
CVE-2021-32776
2021-07-21 21:15:07
nvd
nvd
CVE-2021-32776
2021-07-21 21:15:07
cve
cve
CVE-2021-32776
2021-07-21 21:15:07
prion
prion
Cross site request forgery (csrf)
2021-07-21 21:15:00
cvelist
cvelist
CVE-2021-32776 No CSRF form token cleanup on Windows servers
2021-07-21 20:25:09