CVE-2021-21407
21.07.2021, 16:15
Combodo iTop is an open source, web based IT Service Management tool. Prior to version 2.7.4, the CSRF token validation can be bypassed through iTop portal via a tricky browser procedure. The vulnerability is patched in version 2.7.4 and 3.0.0.
| Vendor | Product | Version |
|---|---|---|
| combodo | itop | 𝑥 < 2.7.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration