Vulnerabilities > Combodo

DATE CVE VULNERABILITY TITLE RISK
2023-10-25 CVE-2023-34446 Cross-site Scripting vulnerability in Combodo Itop 3.0.3
iTop is an open source, web-based IT service management platform.
network
low complexity
combodo CWE-79
6.1
2023-10-25 CVE-2023-34447 Cross-site Scripting vulnerability in Combodo Itop
iTop is an open source, web-based IT service management platform.
network
low complexity
combodo CWE-79
6.1
2023-03-14 CVE-2022-39214 Incorrect Authorization vulnerability in Combodo Itop
Combodo iTop is an open source, web-based IT service management platform.
network
high complexity
combodo CWE-863
7.5
2023-03-14 CVE-2022-39216 Use of Insufficiently Random Values vulnerability in Combodo Itop
Combodo iTop is an open source, web-based IT service management platform.
network
low complexity
combodo CWE-330
critical
9.8
2022-06-14 CVE-2022-31403 Cross-site Scripting vulnerability in Combodo Itop 3.0.1
ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/pages/ajax.render.php.
network
combodo CWE-79
4.3
2022-06-10 CVE-2022-31402 Cross-site Scripting vulnerability in Combodo Itop 3.0.1
ITOP v3.0.1 was discovered to contain a cross-site scripting (XSS) vulnerability via /itop/webservices/export-v2.php.
network
combodo CWE-79
4.3
2022-04-21 CVE-2021-41161 Cross-site Scripting vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-79
4.3
2022-04-21 CVE-2021-41162 Cross-site Scripting vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-79
4.3
2022-04-21 CVE-2022-24870 Cross-site Scripting vulnerability in Combodo Itop 3.0.0
Combodo iTop is a web based IT Service Management tool.
network
combodo CWE-79
3.5
2022-04-05 CVE-2022-24780 Code Injection vulnerability in Combodo Itop
Combodo iTop is a web based IT Service Management tool.
network
low complexity
combodo CWE-94
8.8