Combodo iTop does not validate inputted parameters, attackers can inject malicious commands and launch XSS attack.
combodo itop 3.0.0
combodo itop