Snipeitapp

snipeitapp

49 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (49)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-4075 1Snipeitapp 1Snipe It Nov 21, 2024 Dec 6, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 snipe-it is vulnerable to Server-Side Request Forgery (SSRF)
CVE-2021-4018 1Snipeitapp 1Snipe It Nov 21, 2024 Dec 1, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3961 1Snipeitapp 1Snipe It Nov 21, 2024 Nov 19, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3938 1Snipeitapp 1Snipe It Nov 21, 2024 Nov 13, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3931 1Snipeitapp 1Snipe It Nov 21, 2024 Nov 13, 2021 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2021-3879 1Snipeitapp 1Snipe It Nov 21, 2024 Oct 19, 2021 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3863 1Snipeitapp 1Snipe It Nov 21, 2024 Oct 19, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2021-3858 1Snipeitapp 1Snipe It Nov 21, 2024 Oct 19, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
CVE-2019-10118 1Snipeitapp 1Snipe It Nov 21, 2024 Mar 27, 2019 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.