Lucene search
Veracode Vulnerability DatabaseVERACODE:33395HistoryDec 20, 2021 - 4:40 a.m.
Cross-Site Request Forgery (CSRF)
2021-12-2004:40:37
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
snipe-it
cross-site request forgery
vulnerability
getrequestasset
viewassetscontroller.php
software
EPSS
0.001
Percentile
47.7%
snipe/snipe-it is vulnerable to cross-site request forgery. The vulnerability exists in the getRequestAsset in the ViewAssetsController.php, allowing an attacker to disrupt request tracking by sending the malicious HTML.
Related
cnvd
cnvd
snipe-it cross-site request forgery vulnerability (CNVD-2022-08728)
2021-12-21 00:00:00
osv
osv
snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
2022-01-05 20:33:16
CVE-2021-4130
2021-12-18 05:15:08
cve
cve
CVE-2021-4130
2021-12-18 05:15:08
huntr
huntr
Cross-Site Request Forgery (CSRF) in snipe/snipe-it
2021-12-16 03:58:25
nvd
nvd
CVE-2021-4130
2021-12-18 05:15:08
cvelist
cvelist
CVE-2021-4130 Cross-Site Request Forgery (CSRF) in snipe/snipe-it
2021-12-18 04:40:10
prion
prion
Cross site request forgery (csrf)
2021-12-18 05:15:00
github
github
snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
2022-01-05 20:33:16