Vulnerabilities > Combodo

DATE CVE VULNERABILITY TITLE RISK
2021-07-21 CVE-2021-32775 Information Exposure Through an Error Message vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
low complexity
combodo CWE-209
4.0
2021-07-21 CVE-2021-32776 Cross-Site Request Forgery (CSRF) vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-352
6.8
2021-07-21 CVE-2021-21407 Cross-Site Request Forgery (CSRF) vulnerability in Combodo Itop
Combodo iTop is an open source, web based IT Service Management tool.
network
combodo CWE-352
4.3
2021-07-21 CVE-2021-21406 Command Injection vulnerability in Combodo Itop
Combodo iTop is an open source, web based IT Service Management tool.
network
low complexity
combodo CWE-77
6.5
2021-01-13 CVE-2020-15221 Cross-site Scripting vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-79
3.5
2021-01-13 CVE-2020-15220 Insufficient Session Expiration vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-613
5.8
2021-01-13 CVE-2020-15219 Information Exposure Through an Error Message vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
low complexity
combodo CWE-209
4.0
2021-01-13 CVE-2020-15218 Insufficient Session Expiration vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-613
3.5
2021-01-12 CVE-2020-4079 Information Exposure vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
low complexity
combodo CWE-200
4.0
2020-08-10 CVE-2020-12781 Cross-Site Request Forgery (CSRF) vulnerability in Combodo Itop
Combodo iTop contains a cross-site request forgery (CSRF) vulnerability, attackers can execute specific commands via malicious site request forgery.
network
combodo CWE-352
6.8