VYPR
Unrated severityNVD Advisory· Published Jan 13, 2021· Updated Aug 4, 2024

Admin pages are cached and can be embedded

CVE-2020-15218

Description

Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, admin pages are cached, so that their content is visible after deconnection by using the browser back button. This is fixed in versions 2.7.2 and 3.0.0.

Affected products

2
  • Combodo/Itopllm-fuzzy2 versions
    <2.7.2 || <3.0.0+ 1 more
    • (no CPE)range: <2.7.2 || <3.0.0
    • (no CPE)range: < 2.7.2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.