Lucene search
K

8 matches found

NVD
NVD
added 2023/11/09 6:15 a.m.11 views

CVE-2023-47489

CSV injection in export as csv in Combodo iTop v.3.1.0-2-11973 allows a local attacker to execute arbitrary code via a crafted script to the export-v2.php and ajax.render.php components...

7.8CVSS0.00448EPSS
Exploits0References3
Prion
Prion
added 2023/11/09 6:15 a.m.18 views

Input validation

CSV injection in export as csv in Combodo iTop v.3.1.0-2-11973 allows a local attacker to execute arbitrary code via a crafted script to the export-v2.php and ajax.render.php components...

4.3CVSS7.8AI score0.00448EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/11/09 12:0 a.m.12 views

CVE-2023-47489

CSV injection in export as csv in Combodo iTop v.3.1.0-2-11973 allows a local attacker to execute arbitrary code via a crafted script to the export-v2.php and ajax.render.php components...

8AI score0.00448EPSS
Exploits0References3
NVD
NVD
added 2022/06/10 5:15 p.m.24 views

CVE-2022-31402

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/webservices/export-v2.php...

6.1CVSS0.0219EPSS
Exploits1References3
Prion
Prion
added 2022/06/10 5:15 p.m.12 views

Cross site scripting

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/webservices/export-v2.php...

4.3CVSS6AI score0.0219EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2022/06/10 4:47 p.m.24 views

CVE-2022-31402

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/webservices/export-v2.php...

6.2AI score0.0219EPSS
Exploits1References3
CVE
CVE
added 2022/06/10 4:47 p.m.76 views

CVE-2022-31402

Multiple sources corroborate that ITOP (iTop) is affected by cross-site scripting (XSS) vulnerabilities in various components and versions. The original CVE-2022-31402 notes an XSS via /itop/webservices/export-v2.php in ITOP 3.0.1. Connected PTSecurity entries expand on additional XSS issues: (1)...

6.1CVSS6AI score0.0219EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/06/10 4:47 p.m.16 views

CVE-2022-31402

ITOP v3.0.1 was discovered to contain a cross-site scripting XSS vulnerability via /itop/webservices/export-v2.php...

6.1CVSS6.1AI score0.0219EPSS
Exploits1References5
Rows per page
Query Builder