Vulnerabilidades em Combodo
66 resultadosCVE-2023-38511MEDIUMiTop Dashboard editor vulnerable dashboard config file parameterEPSS 0.7%CVE-2020-15219MEDIUMSQL query displayed on portal errorEPSS 0.7%CVE-2023-34447HIGHiTop XSS vulnerability on pages/UI.php EPSS 0.7%CVE-2024-52002HIGHCross-Site Request Forgery (CSRF) in several iTop pagesEPSS 0.6%CVE-2020-12779MEDIUMCombodo iTop - Stored XSSEPSS 0.6%CVE-2021-41161CRITICALXSS in csvimport in 3.0.0-beta versionsEPSS 0.6%CVE-2021-41162CRITICALCross-site Scripting in Combodo iTopEPSS 0.6%CVE-2020-15221MEDIUMXSS in the breadcrumbsEPSS 0.6%CVE-2024-51740MEDIUMSSRF through arbitrary PHP class instantiation in the user portal in Combodo iTopEPSS 0.5%CVE-2023-34446HIGHiTop XSS vulnerability on pages/preferences.php EPSS 0.5%CVE-2025-24022HIGHiTop server vulnerable to portal code injectionEPSS 0.5%CVE-2020-12781MEDIUMCombodo iTop - CSRFEPSS 0.5%CVE-2021-21407HIGHPortal : the CSRF token isn't validatedEPSS 0.5%CVE-2023-47622HIGHiTop vulnerable to XSS vulnerability in dashlet refreshEPSS 0.4%CVE-2024-51995HIGHLogic bug in ajax.render.php allows for bypass of 'backOffice' access control in Combodo iTopEPSS 0.4%CVE-2023-44396MEDIUMiTop vulnerable to XSS in dashlet modifications ajax endpointsEPSS 0.4%CVE-2025-47286HIGHCombodo iTop vulnerable to Remote Code Execution in the backup creation functionalityEPSS 0.4%CVE-2023-47626HIGHiTop vulnerable to XSS vulnerability in authent-tokenEPSS 0.4%CVE-2021-32776MEDIUMNo CSRF form token cleanup on Windows serversEPSS 0.4%CVE-2023-43790MEDIUMiTop vulnerable to XSS in friendlyname in object detailsEPSS 0.4%