Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
snipe-it vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-10118
Snipe-IT prior to 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.
Snipeitapp Snipe-it
NA
CVE-2022-44381
Snipe-IT up to and including 6.0.14 allows malicious users to check whether a user account exists because of response variations in a /password/reset request.
Snipeitapp Snipe-it
312
VMScore
CVE-2022-1380
Stored Cross Site Scripting vulnerability in Item name parameter in GitHub repository snipe/snipe-it prior to v5.4.3. The vulnerability is capable of stolen the user Cookie.
Snipeitapp Snipe-it
356
VMScore
CVE-2022-1511
Missing Authorization in GitHub repository snipe/snipe-it before 5.4.4.
Snipeitapp Snipe-it
NA
CVE-2022-3173
Improper Authentication in GitHub repository snipe/snipe-it before 6.0.10.
Snipeitapp Snipe-it
490
VMScore
CVE-2022-0178
Missing Authorization vulnerability in snipe snipe/snipe-it.This issue affects snipe/snipe-i prior to 5.3.8.
Snipeitapp Snipe-it
436
VMScore
CVE-2022-0179
snipe-it is vulnerable to Missing Authorization
Snipeitapp Snipe-it
356
VMScore
CVE-2022-0579
Missing Authorization in Packagist snipe/snipe-it before 5.3.9.
Snipeitapp Snipe-it
312
VMScore
CVE-2021-3938
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Snipeitapp Snipe-it
312
VMScore
CVE-2021-4018
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Snipeitapp Snipe-it
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »