CVE-2020-15220

Published: 2021-01-13T17:15Z

Last Modified: 2024-11-21T05:05Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, two cookies are created for the same session, which leads to a possibility to steal user session. This is fixed in versions 2.7.2 and 3.0.0. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt