XSS in dashlet modifications ajax endpoints

Moderate

Molkobain published GHSA-gqqj-jgh6-3x35

Apr 15, 2024

Package

iTop (SourceForge)

Affected versions

< 2.7.1, < 3.0.4, < 3.1.1

Patched versions

2.7.10, 3.0.4, 3.1.1

Description

Impact

Dashlet edits ajax endpoints can be used to produce XSS

Patches

Fixed in iTop 2.7.10, 3.0.4, 3.1.1

References

Combodo ref N°6606
Huntr : XSS at full/pages/ajax.render.php - parameter params[attr_dashlet_type] vulnerability found in itop

Credits

v4yne1

For more information

If you have any questions or comments about this advisory:
Email us at itop-security@combodo.com

Severity

Moderate

6.8

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

Low

User interaction

Required

Scope

Changed

Confidentiality

High

Integrity

None

Availability

None

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N