3 matches found
CVE-2021-41162
creationtimestamp| type| source ---|---|--- 2022-04-21 20:26:53+00:00| seen| https://t.me/cibsecurity/41233...
CVE-2021-41162 Cross-site Scripting in Combodo iTop
Combodo iTop is a web based IT Service Management tool. In 3.0.0 beta releases prior to beta6 the ajax.render.php?operation=wizardhelper page did not properly escape the user supplied parameters, allowing for a cross site scripting attack vector. Users are advised to upgrade. There are no known...
CVE-2021-41162
CVE-2021-41162 affects Combodo iTop, where in 3.0.0 beta releases prior to beta6 the ajax.render.php?operation=wizard_helper page did not properly escape user input, enabling a cross-site scripting (XSS) vulnerability. Red Hat confirms the issue and advises upgrading iTop to a version that contai...