57 matches found
CVE-2022-0579
The CVE-2022-0579 entry concerns Snipe-IT (Packagist snipe/snipe-it) before version 5.3.9. Several connected sources confirm an improper privilege management flaw that allows a user without access to the supplier module to view supplier content, indicating a privilege-related exposure rather than...
CVE-2022-0569
CVE-2022-0569 affects snipe/snipe-it, prior to v5.3.9, with an information-disclosure flaw caused by differences in password-reset responses that can enumerate registered user emails. Impact is information disclosure (email enumeration) and potential brute-force risk implied by exposed email list...
CVE-2022-0611
CVE-2022-0611 concerns an elevation of privilege in the open-source asset management solution Snipe-IT . The vulnerability stems from missing/ improper authorization (privilege management) in versions prior to 5.3.11 , allowing an unprivileged user to perform maintenance-related actions for asset...
CVE-2022-1155
CVE-2022-1155 affects Snipe-IT, where the login enable function does not revoke/block old sessions in versions prior to 5.3.10. Exploitation could allow continuing access by existing sessions after a role/account change. Public details indicate fixes: 5.4.2 and 6.0.0-RC-6 (and later releases). Re...
CVE-2022-1511
CVE-2022-1511 affects snipe/snipe-it prior to 5.4.4, due to Missing Authorization / Improper Access Control. Exploitation allows unauthorized access to the GitHub repository assets and data exposed by insufficient access controls. The issue is documented across multiple sources (GitHub advisory G...
CVE-2022-0178
CVE-2022-0178 affects snipe-it (Snipe-IT). Multiple connected sources describe a Missing Authorization/ improper Access Control vulnerability where users with no system permissions can see and create personal access tokens. Affected versions are prior to 5.3.8. Remediation: update to 5.3.8 or lat...
CVE-2023-5511
CVE-2023-5511 : Cross-Site Request Forgery in the GitHub repository snipe/snipe-it prior to v6.2.3. The weakness is triggered by CSRF in the snipe-it web app, with analysis across sources indicating the issue derives from request handling for the resend remainder acceptance option (defaulting to ...
CVE-2024-48987
CVE-2024-48987 affects Snipe-IT prior to 7.0.10. The vulnerability enables remote code execution through cookie handling when an attacker knows the APP_KEY, with risk amplified by default APP_KEY values in .env files in the repository. Affected component is the cookie deserialization path; root c...
CVE-2022-1445
Snipe-IT (open source IT asset/license management) is affected by CVE-2022-1445: a stored XSS vulnerability in the checked_out_to parameter, caused by unescaped input, allowing an attacker to steal user cookies. It impacts versions before 5.4.3. remediation is to upgrade to 5.4.3 or apply the pro...
CVE-2022-1380
CVE-2022-1380 is a Stored Cross-Site Scripting vulnerability in the snipe-it project’s Item name parameter, affecting all versions prior to 5.4.3. The root cause is unsanitized item name input that can execute injected scripts and potentially steal user cookies, enabling session hijacking. Public...
CVE-2022-2997
CVE-2022-2997 affects the Snipe-IT project (snipe/snipe-it) prior to 6.0.10. Root cause: a session-fixation issue where the session is not invalidated after a password change. Impact: could enable unauthorized access to user accounts if exploited. Remediation: upgrade to version 6.0.10 or later; ...
CVE-2022-3035
CVE-2022-3035 is a Stored XSS vulnerability affecting Snipe-IT prior to version 6.0.11. Multiple sources (NVD/NVD-listed entry, OSV, Veracode, CVE list) consistently describe Cross-site Scripting in the web app, originating from insufficient escaping/input handling in the UI when processing user ...
CVE-2025-47226
Grokability Snipe-IT (Snipe-IT)
CVE-2022-0179
CVE-2022-0179 – snipe-it : A Missing Authorization flaw (faulty access control) in snipe-it, an open-source IT asset/license management system. The vulnerability is described with partial confidentiality/integrity impact (C:L/I:L) and no availability impact in the NVD metrics, and is classified u...
CVE-2021-3879
CVE-2021-3879 affects snipe-it and is caused by improper neutralization of input during web page generation, leading to Cross-site Scripting (XSS). Multiple connected records corroborate a client-side data validation weakness in the web app, with impact described as disclosure/intrusion via injec...
CVE-2022-3173
CVE-2022-3173 affects Snipe-IT prior to 6.0.10. The issue is improper authentication/authorization, allowing a user with only limited license-view permissions to access files uploaded to licenses and, per sources, to create API keys despite lacking permission. Documents indicate a remote authenti...
CVE-2022-44380
Snipe-IT prior to version 6.0.14 is affected by a Cross Site Scripting (XSS) vulnerability when viewing assigned assets. The issue is documented across multiple feeds (CVE-2022-44380) and is addressed by upgrading to Snipe-IT 6.0.14 or later, per Red Hat advisory and NCSC release notes indicating...
CVE-2021-3961
CVE-2021-3961 refers to a cross-site scripting (XSS) vulnerability in the snipe-it project (Snipe-IT). The issue arises from improper neutralization/validation of input during web page generation, allowing crafted data to be reflected in client-side context. Multiple connected sources (including ...
CVE-2021-3863
CVE-2021-3863 affects the open-source asset management app Snipe-IT . The connected documents consistently describe it as a vulnerability of Improper Neutralization of Input During Web Page Generation (XSS) , caused by insecure handling of input that leads to arbitrary JavaScript execution via we...
CVE-2021-3858
CVE-2021-3858 affects the snipe-it project (an open-source IT asset/license management system) and is a Cross-Site Request Forgery (CSRF) vulnerability. Public scoring in CVSSv3.1 is 8.8 (HIGH) with AV:N, AC:L, PR:N, UI:R, C:H, I:H, A:H; CVSSv2 is 6.8 (MEDIUM). The connected documents consistentl...
CVE-2021-4130
CVE-2021-4130 describes a Cross-Site Request Forgery (CSRF) vulnerability in the open-source asset management app snipe-it . The connected records confirm the issue across multiple sources but do not provide concrete details on affected versions or affected components beyond the CSRF label. CVSS ...
CVE-2023-5452
Snipe-IT is affected by a stored cross-site scripting (XSS) vulnerability in versions prior to 6.2.2. Public records describe the issue as affecting the location endpoint (and possibly assets) with stored payloads that can execute script when viewed by another user. A PoC exists in 6.2.1 (and rel...
CVE-2021-4018
CVE-2021-4018 is a stored Cross-site Scripting (XSS) vulnerability affecting snipe-it. Public sources describe an XSS flaw in the web page generation path, with the vulnerability located in checkout/notes handling (notably via AccessoriesTransformer.php/transformCheckedoutAccessory) that allows i...
CVE-2021-4108
CVE-2021-4108 affects the open-source asset management platform snipe-it . The vulnerability is a Cross-site Scripting (XSS) caused by Improper Neutralization of Input During Web Page Generation in the web interface. This is described across connected sources as a stored XSS issue in snipe-it, wi...
CVE-2019-10118
CVE-2019-10118 relates to Snipe-IT, where versions before 4.6.14 are vulnerable to cross-site scripting (XSS) via log_meta values and the user’s last name in the API. The issue is a client-side input handling flaw that permits injection of arbitrary JavaScript/HTML when data is displayed in a use...
CVE-2026-48507
Snipe-IT (IT asset/license management system) has a vulnerability affecting versions before 8.6.0. A non-admin user with only the granular users.edit permission can lock out admins by editing the activated flag (login eligibility) and the ldap_import flag (password reset requests). The issue is f...
CVE-2025-59712
CVE-2025-59712 affects Snipe-IT prior to 8.1.18 where an XSS vulnerability exists due to improper sanitization of the User-Agent field when a user updates their profile. The issue enables injection of arbitrary JavaScript in pages that render the user reports/activity data. A PoC/exploit exists d...
CVE-2025-59713
CVE-2025-59713 affects Snipe-IT before 8.1.18 and is caused by unsafe deserialization. Public references (Red Hat, OSV, CVE listings) and a PoC/exploit repository indicate potential exploitation paths and cross-reference CVE-2025-59712 as well. The vulnerability impacts confidentiality and integr...
CVE-2025-15602
Summary: CVE-2025-15602 affects Snipe-IT
CVE-2026-44831
CVE-2026-44831 affects Snipe-IT, an IT asset/license management system. Prior to v8.4.1, users with component view access could trigger stored XSS via an unescaped notes field in the component checkout process. The issue is fixed in v8.4.1 or later. If you are using versions before 8.4.1, upgrade...
CVE-2026-44832
Snipe-IT (asset/license management) contains a privilege-escalation vulnerability prior to version 8.4.1. An authenticated user with only users.edit permission can elevate themselves to admin by PATCHing /api/v1/users/{id} with permissions[admin]=1. The API controller erroneously strips only the ...
CVE-2026-44833
The CVE-2026-44833 affects Snipe-IT up to version 8.4.0, where an open redirect vulnerability arises from using an unvalidated HTTP Referer header stored in a session variable. When a user action triggers a redirect (e.g., Save with redirect option set to back), the application reads the back_url...
CVE-2025-63601
CVE-2025-63601 affects Snipe-IT prior to 8.3.3. An authenticated attacker can upload a malicious backup file (via the backup/restore flow) containing arbitrary files and then execute system commands, yielding remote code execution. The vulnerability is described as a remote code execution with a ...
CVE-2025-65622
Summary of CVE-2025-65622 (Snipe-IT): Snipe-IT versions prior to 8.3.4 are affected by a stored XSS flaw in the Locations “Country” field. An authenticated, low-privilege user can inject JavaScript that executes in another user’s session. Connected advisories corroborate the issue and identify th...
CVE-2026-55542
Snipe-IT prior to version 8.6.1 exposes a missing authorization check when retrieving S3 signature images. In S3-backed deployments, authenticated users who know a signature filename can obtain a 5-minute signed S3 URL because the S3 branch returns before the authorize() call used by the local-fi...
CVE-2026-37709
The CVE-2026-37709 entry concerns an Insecure Permissions vulnerability in grokability snipe-it ≤ v8.4.0 (fixed after 2026-03-10, commit 676a9958). A remote attacker could execute arbitrary code via app/Http/Controllers/Api/UploadedFilesController.php. The NVD/CVE data indicate a high-severity im...
CVE-2026-48493
Snipe-IT (IT asset/license management) is affected by CVE-2026-48493 through a privilege-escalation flaw in versions prior to 8.6.0. A user with only users.edit can PATCH /api/v1/users/{their_own_id} to grant themselves any permission except admin/superuser (e.g., assets.view, assets.create, repo...
CVE-2026-54329
Summary: CVE-2026-54329 affects Snipe-IT before 8.6.2, where the Accessories API can mass-assign the company_id field, enabling a low-privilege user in one company (with FMCS enabled) to create accessory records under another company. Root cause: API create path mass-assigns request parameters di...
CVE-2026-48492
CVE-2026-48492 affects Snipe-IT (IT asset/license management). Prior to version 8.6.1, the GET /api/v1/{object}/selectlist endpoint lacked an authorization check, allowing any logged-in user (with a web session cookie and no API token) to enumerate all user accounts and retrieve usernames, displa...
CVE-2025-65621
Snipe-IT (asset/license management system) is affected by a stored XSS vulnerability in versions prior to 8.3.4. A low‑privileged authenticated user can inject JavaScript that executes in an administrator’s session, enabling privilege escalation. Root cause centers on input handling in the applic...
CVE-2026-55843
Snipe-IT (IT asset/license management system) contains a privilege management flaw prior to version 8.6.0 in UsersController::update(), where a missing permission request field is passed through NormalizePermissionsPayloadAction and PreserveUnauthorizedPrivilegedPermissionsAction. This can overwr...
CVE-2026-55452
CVE-2026-55452 concerns Snipe-IT (IT asset/license management) where pre-8.5.0 builds store the User-Agent header via Actionlog::logaction() and export it in Activity Report CSV without formula escaping. This allows a low-privileged authenticated user to inject a formula-like payload that can exe...
CVE-2026-55475
Snipe-IT prior to version 8.6.1 is vulnerable via the Importer API endpoint where a user with CSV import capabilities and a valid API key can overwrite the created_by value of an import file, enabling unauthorized modification of import ownership metadata. The issue is fixed in version 8.6.1. Thi...
CVE-2026-55461
Snipe-IT (IT asset/license management) versions prior to 8.6.2 are vulnerable: the user edit flow stores url()->previous() from the attacker-controlled Referer header into Laravel’s intended URL session value and subsequently uses redirect()->intended(...) when redirect_option=back is submi...
CVE-2026-55466
CVE-2026-55466 (Snipe-IT) is a stored XSS vulnerability in the UploadFileRequest path before version 8.6.2. The sanitizer only processes SVG content when PHP finfo reports image/svg+xml, and UploadedFilesController serves attachments inline without StorageHelper::allowSafeInline(), enabling a low...
CVE-2026-55472
Snipe-IT (IT asset/license management) prior to version 8.6.2 permits creating a child location under a parent from a different company when Full Multiple Companies Support and scope_locations_fmcs are enabled. The API location creation endpoint detects an invalid parent-child company mismatch bu...
CVE-2026-55474
Snipe-IT (IT asset/license management) is affected by a directory-traversal in ActionlogController::displaySig prior to version 8.5.0. The route filename parameter is concatenated into a private upload-directory path without sanitization, enabling an authenticated attacker to read arbitrary files...
CVE-2026-55481
Snipe-IT (IT asset/license management) prior to 8.6.2 is affected by a CSS injection vulnerability in default.blade.php: header_color and related branding color settings are rendered inside a CSS style block with insufficient HTML escaping for the CSS context. This allows a superadmin to inject a...
CVE-2026-55516
CVE-2026-55516 affects Snipe-IT prior to 8.6.2. A PATCH/PUT to /api/v1/maintenances/{maintenance_id} first validates access to the maintenance and asset, then accepts attacker-controlled asset_id, allowing an authorized user to re-parent a maintenance record to an asset outside their company scop...
CVE-2026-55469
Snipe-IT prior to 8.6.2 is affected. An authenticated user with import and assets.update permissions can inject a path traversal string into an asset image field via CSV import, which can trigger image deletion and lead to deletion of arbitrary files accessible to the server process. The issue is...