CVE-2025-24022 Information

Description

iTop is an web based IT Service Management tool. Prior to versions 2.7.12 3.1.3 and 3.2.1 server code execution is possible through the frontend of iTop’s portal. This is fixed in versions 2.7.12 3.1.3 and 3.2.1.

Reference

https://github.com/Combodo/iTop/security/advisories/GHSA-rhv2-wfrr-4j2j