Snipe-IT prior to 6.0.14 is vulnerable to Cross Site Scripting (XSS) for View Assigned Assets.
snipeitapp snipe-it