Vulnerabilidades en Combodo
66 resultadosCVE-2024-52000HIGHReflected Cross-site Scripting exploit in Combodo iTopEPSS 0.4%CVE-2023-47123HIGHiTop vulnerable to XSS vulnerability in n:n relations "tagset" widgetEPSS 0.3%CVE-2023-45808MEDIUMiTop missing silo check on extkey in console and portalEPSS 0.3%CVE-2024-51994HIGHCross-site Scripting in portal picture upload in Combodo iTopEPSS 0.3%CVE-2024-31448HIGHCross-site Scripting vulnerability in link CSV import in Combodo iTopEPSS 0.3%CVE-2024-52001MEDIUMPortal user is able to access forbidden services information in Combodo iTopEPSS 0.3%CVE-2023-34443HIGHCross-site Scripting vulnerability in the run_query.php page in Combodo iTopEPSS 0.3%CVE-2023-34445HIGHCross-site Scripting vulnerability on pages/ajax.render.php in Combodo iTopEPSS 0.3%CVE-2023-34444HIGHCross-site Scripting vulnerability on pages/ajax.searchform.php in Combodo iTopEPSS 0.3%CVE-2024-52601MEDIUMiTop portal Insecure Direct Object Reference vulnerabilityEPSS 0.3%CVE-2025-24026MEDIUMiTop Inefficient Regular Expression Complexity vulnerabilityEPSS 0.3%CVE-2025-49145HIGHiTop admin can drop iTop database using webhooksEPSS 0.3%CVE-2025-24785MEDIUMiTop dashboard vulnerable to denial of serviceEPSS 0.2%CVE-2025-24969MEDIUMiTop portal user can see any other contact's pictureEPSS 0.2%CVE-2024-56157MEDIUMiTop vulnerable to Self XSS in CSV ImportEPSS 0.2%CVE-2024-31998HIGHCSRF security issue on CSV import in Combodo iTopEPSS 0.2%CVE-2025-24021MEDIUMiTop doesn't have mass assignment of fields in the portal formEPSS 0.2%CVE-2025-27139MEDIUMCombodo iTop vulnerable to stored self Cross-site Scripting in preferencesEPSS 0.2%CVE-2024-54139HIGHCombodo iTop vulnerable to XSS leading to CSRF breach on _table_id parameterEPSS 0.2%CVE-2025-64167HIGHCombodo iTop vulnerable to reflected XSS in webservices/export.phpEPSS 0.2%