Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
snipe-it vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-0611
Missing Authorization in Packagist snipe/snipe-it before 5.3.11.
Snipeitapp Snipe-it
8.8
CVSSv3
CVE-2023-5511
Cross-Site Request Forgery (CSRF) in GitHub repository snipe/snipe-it prior to v.6.2.3.
Snipeitapp Snipe-it
5.4
CVSSv3
CVE-2021-3938
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Snipeitapp Snipe-it
5.4
CVSSv3
CVE-2021-3961
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Snipeitapp Snipe-it
4.3
CVSSv3
CVE-2021-4089
snipe-it is vulnerable to Improper Access Control
Snipeitapp Snipe-it
5.4
CVSSv3
CVE-2022-0178
Missing Authorization vulnerability in snipe snipe/snipe-it.This issue affects snipe/snipe-i prior to 5.3.8.
Snipeitapp Snipe-it
6.1
CVSSv3
CVE-2019-10118
Snipe-IT prior to 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.
Snipeitapp Snipe-it
8.8
CVSSv3
CVE-2021-3858
snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
Snipeitapp Snipe-it
5.4
CVSSv3
CVE-2021-3879
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Snipeitapp Snipe-it
5.3
CVSSv3
CVE-2022-44381
Snipe-IT up to and including 6.0.14 allows malicious users to check whether a user account exists because of response variations in a /password/reset request.
Snipeitapp Snipe-it
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »