Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
iTop Dashboard editor vulnerable dashboard config file parameter
Vulnerability Description
iTop is an IT service management platform. Dashboard editor : can load multiple files and URL, and full path disclosure on dashboard config file. This vulnerability is fixed in 3.0.4 and 3.1.1.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
iTop 安全漏洞
Vulnerability Description
iTop是一个提供优化 iTop 所需的所有资源的平台。 iTop 3.0.4 和 3.1.1 版本存在安全漏洞,该漏洞源于仪表板编辑器存在漏洞。攻击者利用该漏洞可以加载多个文件和 URL,以及公开仪表板配置文件上的完整路径。
CVSS Information
N/A
Vulnerability Type
N/A