EPSS
Percentile
41.1%
snipe/snipe-it is vulnerable to server-side request forgery. An attacker can send requests on behalf of the server into the internal network via slack integration.
github.com/snipe/snipe-it/commit/4612b9e711b3ff5d2bcddbec5b18866d25f8e34e
github.com/snipe/snipe-it/pull/10394
huntr.dev/bounties/4386fd8b-8c80-42bb-87b8-b506c46597de