CVE-2024-31998 Information

Description

Combodo iTop is a simple web based IT Service Management tool. A CSRF can be performed on CSV import simulation. This issue has been fixed in versions 3.1.2 and 3.2.0. All users are advised to upgrade. There are no known workarounds for this vulnerability.

Reference

https://github.com/Combodo/iTop/security/advisories/GHSA-8cwx-q4xh-7c7r