CVE-2023-34444 | Combodo iTop up to 2.7.8/3.0.3 ajax.searchform.php cross site scripting (GHSA-rwx9-rcxf-qrwv)

Posted by Angelo Barbosa | Nov 5, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Combodo iTop up to 2.7.8/3.0.3. This affects an unknown part of the file pages/ajax.searchform.php. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2023-34444. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-34444 | Combodo iTop up to 2.7.8/3.0.3 ajax.searchform.php cross site scripting (GHSA-rwx9-rcxf-qrwv)

Related Posts

CVE-2024-5895 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php delete_users id sql injection

CVE-2024-39675 | Siemens RUGGEDCOM RMC30 prior 4.3.10 Modbus Service unknown vulnerability (ssa-170375)

CVE-2024-10738 | itsourcecode Farm Management System 1.0 manage-breed.php breed sql injection

CVE-2023-51099 | Tenda W9 1.0.0.7(4456)_CN formexeCommand command injection