Yung-Hao

#7171of 53,635
38Total CVSS
Vulnerabilities · 5
Medium
1
High
4
PT-2020-13259
7.5
2020-08-10
Comodo · Combodo Itop · CVE-2020-12777
**Name of the Vulnerable Software and Affected Versions** Combodo iTop (affected versions not specified) **Description** The issue is related to Broken Access Control in a function within Combodo iTop. This allows an unauthorized attacker to inject commands and disclose system information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2020-13260
7.4
2020-08-10
Comodo · Itop · CVE-2020-12778
**Name of the Vulnerable Software and Affected Versions** Combodo iTop (affected versions not specified) **Description** The issue concerns the lack of validation for inputted parameters, allowing attackers to inject malicious commands and initiate a cross-site scripting (XSS) attack. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2020-13261
6.8
2020-08-10
Comodo · Itop · CVE-2020-12779
**Name of the Vulnerable Software and Affected Versions** Combodo iTop (affected versions not specified) **Description** The issue is related to a stored Cross-site Scripting vulnerability. This can be exploited by uploading a file that contains a malicious script. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2020-13262
7.5
2020-08-10
Comodo · Combodo Itop · CVE-2020-12780
**Name of the Vulnerable Software and Affected Versions** Combodo iTop (affected versions not specified) **Description** A security misconfiguration exists in Combodo iTop, which can expose sensitive information. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2020-13263
8.8
2020-08-10
Comodo · Itop · CVE-2020-12781
**Name of the Vulnerable Software and Affected Versions** Combodo iTop (affected versions not specified) **Description** The issue is related to a cross-site request forgery (CSRF) vulnerability. This means that attackers can execute specific commands by forging requests from a malicious site. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.