Security Advisory

CVE-2021-41162

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-21 16:45:13

Last updated 2025-04-23 18:33:13

Assigner GitHub_M

State PUBLISHED

Description

Combodo iTop is a web based IT Service Management tool. In 3.0.0 beta releases prior to beta6 the `ajax.render.php?operation=wizard_helper` page did not properly escape the user supplied parameters, allowing for a cross site scripting attack vector. Users are advised to upgrade. There are no known workarounds for this issue.

← Browse all CVEs View on cve.org ↗