VYPR
Unrated severityNVD Advisory· Published Apr 15, 2024· Updated Aug 2, 2024

iTop vulnerable to XSS in dashlet modifications ajax endpoints

CVE-2023-44396

Description

iTop is an IT service management platform. Dashlet edits ajax endpoints can be used to produce XSS. Fixed in iTop 2.7.10, 3.0.4, and 3.1.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.