Lucene search
China National Vulnerability DatabaseCNVD-2021-89157HistoryNov 16, 2021 - 12:00 a.m.
Snipe-IT Cross-Site Scripting Vulnerability
2021-11-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
snipe-it
cross-site scripting
vulnerability
asset management
open source
user-submitted data
assetscontroller
it management
EPSS
0.001
Percentile
21.4%
Snipe-IT is an open source IT asset/license management system. Snipe-IT has a cross-site scripting vulnerability that stems from the lack of filtering and escaping of user-submitted data in AssetsController, for which no detailed vulnerability details are currently available.
Related
osv
osv
snipe-it is vulnerable to Cross-site Scripting
2021-11-15 23:19:42
CVE-2021-3938
2021-11-13 09:15:07
huntr
huntr
Cross-site Scripting (XSS) - Generic in snipe/snipe-it
2021-11-05 04:49:43
nvd
nvd
CVE-2021-3938
2021-11-13 09:15:07
veracode
veracode
Cross-site Scripting (XSS)
2021-11-15 09:02:55
prion
prion
Cross site scripting
2021-11-13 09:15:00
github
github
snipe-it is vulnerable to Cross-site Scripting
2021-11-15 23:19:42
cvelist
cvelist
CVE-2021-3938 Cross-site Scripting (XSS) - Generic in snipe/snipe-it
2021-11-13 08:35:10
cve
cve
CVE-2021-3938
2021-11-13 09:15:07