Snipe-it@* Security Vulnerabilities and Issues — Snipe-it@* CVE List | Vulners.com

Lucene search

K

SnipeitappSnipe-it*

13 matches found

CVE•added 2022/02/14 7:15 p.m.•117 views

CVE-2022-0579

Missing Authorization in Packagist snipe/snipe-it prior to 5.3.9.

6.5CVSS6.3AI score0.00303EPSS

CVE•added 2022/02/14 12:15 p.m.•108 views

CVE-2022-0569

Observable Discrepancy in Packagist snipe/snipe-it prior to v5.3.9.

5.3CVSS4.5AI score0.00356EPSS

CVE•added 2022/02/16 12:15 a.m.•108 views

CVE-2022-0611

Missing Authorization in Packagist snipe/snipe-it prior to 5.3.11.

8.8CVSS7.2AI score0.00284EPSS

CVE•added 2022/01/13 11:15 p.m.•88 views

CVE-2022-0178

Missing Authorization vulnerability in snipe snipe/snipe-it.This issue affects snipe/snipe-i before 5.3.8.

6.3CVSS5.5AI score0.00213EPSS

CVE•added 2022/04/28 3:15 p.m.•84 views

CVE-2022-1511

Missing Authorization in GitHub repository snipe/snipe-it prior to 5.4.4.

6.5CVSS6.4AI score0.00266EPSS

CVE•added 2022/03/30 1:15 p.m.•83 views

CVE-2022-1155

Old sessions are not blocked by the login enable function. in GitHub repository snipe/snipe-it prior to 5.3.10.

7.4CVSS7.4AI score0.00241EPSS

CVE•added 2022/04/24 3:15 p.m.•81 views

CVE-2022-1445

Stored Cross Site Scripting vulnerability in the checked_out_to parameter in GitHub repository snipe/snipe-it prior to 5.4.3. The vulnerability is capable of stolen the user Cookie.

9CVSS5.6AI score0.00313EPSS

CVE•added 2022/04/16 12:15 p.m.•74 views

CVE-2022-1380

Stored Cross Site Scripting vulnerability in Item name parameter in GitHub repository snipe/snipe-it prior to v5.4.3. The vulnerability is capable of stolen the user Cookie.

9.1CVSS5.6AI score0.00236EPSS

CVE•added 2022/08/25 9:15 p.m.•74 views

CVE-2022-2997

Session Fixation in GitHub repository snipe/snipe-it prior to 6.0.10.

8CVSS6AI score0.00332EPSS

CVE•added 2022/08/29 8:15 p.m.•66 views

CVE-2022-3035

Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.0.11.

5.9CVSS4.9AI score0.00243EPSS

CVE•added 2022/09/17 7:15 a.m.•63 views

CVE-2022-3173

Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10.

4.3CVSS4.5AI score0.0027EPSS

CVE•added 2022/12/25 5:15 a.m.•63 views

CVE-2022-44380

Snipe-IT before 6.0.14 is vulnerable to Cross Site Scripting (XSS) for View Assigned Assets.

5.4CVSS5.2AI score0.00115EPSS

CVE•added 2022/01/12 5:15 a.m.•62 views

CVE-2022-0179

snipe-it is vulnerable to Missing Authorization

6.3CVSS5.5AI score0.00221EPSS