3 matches found
Cross Site Scripting vulnerability in Snipe-IT
Cross Site Scripting vulnerability in Snipe-IT v.7.0.13 allows a remote attacker to escalate privileges via an unknown part of the file /users/user-id/files...
PT-2022-27203 · Snipe-It · Snipe-It
Name of the Vulnerable Software and Affected Versions: Snipe-IT versions prior to 6.0.14 Description: The issue is related to Cross Site Scripting XSS for View Assigned Assets. This means an attacker could potentially inject malicious scripts into the website, which would then be executed by the...
CVE-2021-4130
snipe-it is vulnerable to Cross-Site Request Forgery CSRF...