3 matches found
CVE-2021-3938
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-3938
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting'...
CVE-2021-3938
CVE-2021-3938 affects the open-source asset management web app Snipe-IT with a Cross-site Scripting (XSS) vulnerability. The issue stems from lack of proper filtering/escaping of user-submitted data in the AssetsController, enabling injection in web page generation. Public details cover the affec...