CVE-2020-15220 – Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and …

Vuln ID: CVE-2020-15220

Published:  2021-01-13  17:15:12Z

Description: Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 3.0.0, two cookies are created for the same session, which leads to a possibility to steal user session. This is fixed in versions 2.7.2 and 3.0.0.

Source: NVD.NIST.GOV