6 matches found
SnipeIT 6.2.1 Cross Site Scripting
Exploit Title: SnipeIT 6.2.1 - Stored Cross Site Scripting Date: 06-Oct-2023 Exploit Author: Shahzaib Ali Khan Vendor Homepage: https://snipeitapp.com Software Link: https://github.com/snipe/snipe-it/releases/tag/v6.2.1 Version: 6.2.1 Tested on: Windows 11 22H2 and Ubuntu 20.04 CVE: CVE-2023-5452...
SnipeIT 6.2.1 - Stored Cross Site Scripting Vulnerability
Exploit Title: SnipeIT 6.2.1 - Stored Cross Site Scripting Exploit Author: Shahzaib Ali Khan Vendor Homepage: https://snipeitapp.com Software Link: https://github.com/snipe/snipe-it/releases/tag/v6.2.1 Version: 6.2.1 Tested on: Windows 11 22H2 and Ubuntu 20.04 CVE: CVE-2023-5452 Description:...
SnipeIT 6.2.1 - Stored Cross Site Scripting
Exploit Title: SnipeIT 6.2.1 - Stored Cross Site Scripting Date: 06-Oct-2023 Exploit Author: Shahzaib Ali Khan Vendor Homepage: https://snipeitapp.com Software Link: https://github.com/snipe/snipe-it/releases/tag/v6.2.1 Version: 6.2.1 Tested on: Windows 11 22H2 and Ubuntu 20.04 CVE: CVE-2023-5452...
CVE-2023-5452
Snipe-IT is affected by a stored cross-site scripting (XSS) vulnerability in versions prior to 6.2.2. Public records describe the issue as affecting the location endpoint (and possibly assets) with stored payloads that can execute script when viewed by another user. A PoC exists in 6.2.1 (and rel...
CVE-2023-5452 Cross-site Scripting (XSS) - Stored in snipe/snipe-it
Cross-site Scripting XSS - Stored in GitHub repository snipe/snipe-it prior to v6.2.2...
CVE-2023-5452 Cross-site Scripting (XSS) - Stored in snipe/snipe-it
Cross-site Scripting XSS - Stored in GitHub repository snipe/snipe-it prior to v6.2.2...