Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-47123

Published: 15/04/2024 Updated: 15/04/2024

Vulnerability Summary

iTop is an IT service management platform. By filling malicious code in an object friendlyname / complementary name, an XSS attack can be performed when this object will displayed as an n:n relation item in another object. This vulnerability is fixed in 3.1.1 and 3.2.0.

References

https://github.com/Combodo/iTop/security/advisories/GHSA-mx8x-693w-9hjphttps://github.com/Combodo/iTop/commit/34ba4fa0ce99534f751d9f170fe0eda103e20c72https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671unauthorizedCVE-2024-4776CVE-2024-3407CVE-2024-26026CVE-2024-32888wirelessCVE-2024-4656template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook