Snipe-it Security Vulnerabilities and Issues — Snipe-it CVE List

Lucene search

SnipeitappSnipe-it

5 matches found

CVE•added 2022/07/07 11:15 p.m.•83 views

CVE-2022-32060

An arbitrary file upload vulnerability in the Update Branding Settings component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file.

4.8CVSS5.6AI score0.05026EPSS

CVE•added 2022/07/07 11:15 p.m.•72 views

CVE-2022-32061

An arbitrary file upload vulnerability in the Select User function under the People Menu component of Snipe-IT v6.0.2 allows attackers to execute arbitrary code via a crafted file.

4.8CVSS5.6AI score0.00407EPSS

CVE•added 2022/09/17 7:15 a.m.•61 views

CVE-2022-3173

Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10.

4.3CVSS4.5AI score0.00138EPSS

CVE•added 2021/11/13 9:15 a.m.•51 views

CVE-2021-3931

snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)

4.3CVSS4.5AI score0.00128EPSS

CVE•added 2021/12/10 8:15 p.m.•43 views

CVE-2021-4089

snipe-it is vulnerable to Improper Access Control

4.3CVSS4.4AI score0.00131EPSS