Cross Site Scripting vulnerability in Combodo iTop v.3.1.0-2-11973 allows a local malicious user to obtain sensitive information via a crafted script to the attrib_manager_id parameter in the General Information page and the id parameter in the contact page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
combodo itop 3.1.0-2-11973 |