Lucene search
GitHub Advisory DatabaseGHSA-RR5C-69C9-GJ9FHistoryOct 06, 2023 - 9:30 p.m.
Cross-site Scripting in snipe/snipe-it
2023-10-0621:30:49
CWE-79
GitHub Advisory Database
github.com
7
cross-site scripting
github repository
snipe-it
software
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
14.2%
Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.2.2.
Affected configurations
Node
snipesnipe-itRange≤6.2.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| snipe/snipe-it | le | 6.2.1 |
Related
cve
cve
CVE-2023-5452
2023-10-06 20:15:11
exploitdb
exploitdb
SnipeIT 6.2.1 - Stored Cross Site Scripting
2024-03-12 00:00:00
cvelist
cvelist
CVE-2023-5452 Cross-site Scripting (XSS) - Stored in snipe/snipe-it
2023-10-06 19:27:24
veracode
veracode
Cross Site Scripting (XSS)
2023-10-10 04:08:31
huntr
huntr
Stored Cross Site Scripting (XSS)
2023-10-05 16:30:08
prion
prion
Cross site scripting
2023-10-06 20:15:00
packetstorm
packetstorm
SnipeIT 6.2.1 Cross Site Scripting
2024-03-13 00:00:00
osv
osv
Cross-site Scripting in snipe/snipe-it
2023-10-06 21:30:49
CVE-2023-5452
2023-10-06 20:15:11
nvd
nvd
CVE-2023-5452
2023-10-06 20:15:11
zdt
zdt
SnipeIT 6.2.1 - Stored Cross Site Scripting Vulnerability
2024-03-12 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.0004 Low
EPSS
Percentile
14.2%
Related for GHSA-RR5C-69C9-GJ9F