CVE-2025-27139
Combodo iTop vulnerable to stored self Cross-site Scripting in preferences
Combodo iTop is a web based IT service management tool. Versions prior to 2.7.12, 3.1.2, and 3.2.0 are vulnerable to cross-site scripting when the preferences page is opened. Versions 2.7.12, 3.1.2, and 3.2.0 fix the issue.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N
Productos afectados
Combodo · iTop¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →