Snipe-IT 注入漏洞
Snipe-IT is an open source IT asset/license management system. An injection vulnerability exists in Snipe-IT versions v3.0-alpha through v5.3.7. The vulnerability stems from sending a specially crafted request header in a password reset request that can send a password reset link to the user, whi...