Lucene search

K

Server-Side Request Forgery in snipe/snipe-it

🗓️ 10 Dec 2021 20:15:22Reported by GitHub Advisory DatabaseType 
github
 github
🔗 github.com👁 17 Views

Server-Side Request Forgery in snipe/snipe-it. External admin users can perform blind POST-based SSRF via Slack Integration, leading to port-scanning and higher-impact POST requests

Show more
Related
Detection
Refs
ReporterTitlePublishedViews
Family
NVD
CVE-2021-4075
6 Dec 202121:15
nvd
OSV
CVE-2021-4075
6 Dec 202121:15
osv
OSV
Server-Side Request Forgery in snipe/snipe-it
10 Dec 202120:22
osv
Cvelist
CVE-2021-4075 Server-Side Request Forgery (SSRF) in snipe/snipe-it
6 Dec 202120:20
cvelist
Prion
Server side request forgery (ssrf)
6 Dec 202121:15
prion
Huntr
Server-Side Request Forgery (SSRF) in snipe/snipe-it
5 Dec 202118:00
huntr
CNVD
Snipe-IT code issue vulnerability
8 Dec 202100:00
cnvd
CVE
CVE-2021-4075
6 Dec 202121:15
cve
Veracode
Server-Side Request Forgery (SSRF)
7 Dec 202104:01
veracode
Vulners
Node
snipesnipe\-itRange5.3.3

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
10 Dec 2021 20:22Current
4Medium risk
Vulners AI Score4
CVSS26.5
CVSS32.7 - 7.2
EPSS0.001
17
.json
Report