CVE-2020-15218

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-15218
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-15218.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-15218
Related
  • GHSA-3m3g-86hp-5p2j
Published
2021-01-13T17:15:12.460Z
Modified
2026-04-10T04:23:30.165661Z
Severity
  • 6.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, admin pages are cached, so that their content is visible after deconnection by using the browser back button. This is fixed in versions 2.7.2 and 3.0.0.

References

Affected packages

Git / github.com/combodo/itop

Affected ranges

Type
GIT
Repo
https://github.com/combodo/itop
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
97d322a0594abfd85aab946171693fafdd081aab
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
fc24746862778d60fd135c076aa1d621a723f965
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.7.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "3.0.0-alpha"
        }
    ]
}

Affected versions

2.*
2.6.1
2.6.2
2.6.3
2.7.0-alpha1
2.7.0-beta
2.7.0-beta2
2.7.1
3.*
3.0.0-alpha
Other
N1963
N2011
N2016
N941
N941-2

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-15218.json"