Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

snipe

2 Products 28 CVEs

CVE Severity Distribution (All Time)

Critical
2
High
4
Medium
20
Low
2

Timeline Overview

Last 30 Days 0 CVEs
Last 6 Months 0 CVEs
Last Year 0 CVEs

Products

View all

snipe/snipe-it

2 Versions 26 CVEs

snipe-it

5 Versions 2 CVEs

Recent CVEs

View all
CVE-2024-5685 HIGH 1 year, 2 months ago

Users with "User:edit" and "Self:api" permissions can promote or demote themselves or other users by performing changes to the group's memberships vi…

CVE-2023-5511 MEDIUM 1 year, 11 months ago

Cross-Site Request Forgery (CSRF) in GitHub repository snipe/snipe-it prior to v.6.2.3.

CVE-2023-5452 MEDIUM 1 year, 11 months ago

Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.2.2.

CVE-2022-3173 MEDIUM 2 years, 11 months ago

Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10.

CVE-2022-3035 MEDIUM 3 years ago

Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.0.11.

CVE-2022-2997 MEDIUM 3 years ago

Session Fixation in GitHub repository snipe/snipe-it prior to 6.0.10.

CVE-2022-23064 HIGH 3 years, 4 months ago

In Snipe-IT, versions v3.0-alpha to v5.3.7 are vulnerable to Host Header Injection. By sending a specially crafted host header in the reset password …

CVE-2022-1511 MEDIUM 3 years, 4 months ago

Missing Authorization in GitHub repository snipe/snipe-it prior to 5.4.4.

CVE-2022-1445 CRITICAL 3 years, 4 months ago

Stored Cross Site Scripting vulnerability in the checked_out_to parameter in GitHub repository snipe/snipe-it prior to 5.4.3. The vulnerability is ca…

CVE-2022-1380 CRITICAL 3 years, 4 months ago

Stored Cross Site Scripting vulnerability in Item name parameter in GitHub repository snipe/snipe-it prior to v5.4.3. The vulnerability is capable of…