Snipe-IT is an open source IT asset/license management system. Snipe-IT is vulnerable to cross-site request forgery, which stems from a lack of csrf checksum for POST requests in the software’s view.blade.php file, and can be exploited by attackers to launch cross-site request forgery attacks.