Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
snipe-it vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-44380
Snipe-IT prior to 6.0.14 is vulnerable to Cross Site Scripting (XSS) for View Assigned Assets.
Snipeitapp Snipe-it
NA
CVE-2022-44381
Snipe-IT up to and including 6.0.14 allows malicious users to check whether a user account exists because of response variations in a /password/reset request.
Snipeitapp Snipe-it
3.5
CVSSv2
CVE-2021-3938
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Snipeitapp Snipe-it
4
CVSSv2
CVE-2022-0579
Missing Authorization in Packagist snipe/snipe-it before 5.3.9.
Snipeitapp Snipe-it
6.5
CVSSv2
CVE-2022-0611
Missing Authorization in Packagist snipe/snipe-it before 5.3.11.
Snipeitapp Snipe-it
NA
CVE-2022-2997
Session Fixation in GitHub repository snipe/snipe-it before 6.0.10.
Snipeitapp Snipe-it
4.3
CVSSv2
CVE-2019-10118
Snipe-IT prior to 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.
Snipeitapp Snipe-it
NA
CVE-2023-5452
Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.2.2.
Snipeitapp Snipe-it
NA
CVE-2023-5511
Cross-Site Request Forgery (CSRF) in GitHub repository snipe/snipe-it prior to v.6.2.3.
Snipeitapp Snipe-it
4
CVSSv2
CVE-2022-1511
Missing Authorization in GitHub repository snipe/snipe-it before 5.4.4.
Snipeitapp Snipe-it
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »