snipe/snipe-it is vulnerable to arbitrary file upload. The vulnerability exists in the store
function in AcceptanceController.php
due to improper validation of the update branding settings component, allowing an attacker to inject and execute arbitrary code through a maliciously crafted file.
CPE | Name | Operator | Version |
---|---|---|---|
snipe/snipe-it | le | v6.0.2 | |
snipe/snipe-it | le | v6.0.2 |