Snipeitapp: >> Snipe-It >> 0.1.0 Security Vulnerabilities
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS Score
5.5
EPSS Score
0.002
Published
2021-10-19
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS Score
6.8
EPSS Score
0.005
Published
2021-10-19
Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-03-27
Page 4