Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:42 a.m.6 views

CVE-2022-32061

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS7.7AI score0.00548EPSS
Exploits1References1
Veracode
Veracode
added 2022/07/11 4:23 p.m.19 views

Remote Code Execution

snipe/snipe-it is vulnerable to remote code execution. The vulnerability exists in the Select User function under the People Menu component which allows an attacker with admin privileges to inject remote code to a user via maliciously crafted pdf files...

4.8CVSS6AI score0.00548EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/07/08 12:0 a.m.21 views

GHSA-XWQX-X38C-CW95 Snipe-IT 6.0.2 vulnerable to Cross-site Scripting

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS5.5AI score0.00548EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2022/07/08 12:0 a.m.27 views

Snipe-IT 6.0.2 vulnerable to Cross-site Scripting

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS6.3AI score0.00548EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/07/07 11:15 p.m.0 views

CVE-2022-32061

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS5.7AI score0.00548EPSS
Exploits1References2
OSV
OSV
added 2022/07/07 11:15 p.m.14 views

CVE-2022-32061

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

4.8CVSS5.7AI score
Exploits0References1
Prion
Prion
added 2022/07/07 11:15 p.m.13 views

Design/Logic Flaw

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

3.5CVSS5.6AI score0.00548EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/07/07 10:12 p.m.20 views

CVE-2022-32061

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file...

5.9AI score0.00548EPSS
Exploits1References1
CVE
CVE
added 2022/07/07 10:12 p.m.81 views

CVE-2022-32061

CVE-2022-32061 affects Snipe-IT v6.0.2: the vulnerability is an arbitrary file upload in the Select User function under the People Menu component, enabling an attacker to execute arbitrary code via a crafted file. The connected sources confirm the affected product and the basic impact but do not ...

4.8CVSS5.6AI score0.00548EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder