CVE-2023-34445 | Combodo iTop up to 2.7.8/3.0.3 pages/ajax.render.php cross site scripting (GHSA-mm45-wh68-jpvq)

Posted by Angelo Barbosa | Nov 5, 2024 | CVE

A vulnerability has been found in Combodo iTop up to 2.7.8/3.0.3 and classified as problematic. This vulnerability affects unknown code of the file pages/ajax.render.php. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2023-34445. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-34445 | Combodo iTop up to 2.7.8/3.0.3 pages/ajax.render.php cross site scripting (GHSA-mm45-wh68-jpvq)

Related Posts

CVE-2024-35085 | J2EEFAST 2.7.0 ProcessDefinitionMapper.xml findPage sql injection

CVE-2024-6548 | Add Admin JavaScript Plugin up to 2.0 on WordPress information disclosure

CVE-2024-23170 | mbed TLS up to 2.28.6/3.5.1 timing discrepancy

CVE-2024-31294 | Fahad Mahmood WP Sort Order Plugin up to 1.3.1 on WordPress authorization