All 6 CVE vulnerabilities found in snipe-it, with AI-generated Chinese analysis, references, and POCs.
Vendor: snipe
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-15602 | Snipe-IT < 8.3.7 Mass Assignment Vulnerability Leading to Privilege Escalation CWE-915 | 8.8 | High | 2026-03-06 |
| CVE-2025-59712 | Snipe-IT 跨站脚本漏洞 CWE-79 | 6.4 | Medium | 2025-09-19 |
| CVE-2025-59713 | Snipe-IT 代码问题漏洞 CWE-502 | 6.8 | Medium | 2025-09-19 |
| CVE-2025-47226 | Snipe-IT 安全漏洞 CWE-425 | 5.0 | Medium | 2025-05-02 |
| CVE-2024-5685 | Broken Function Level Authorization (BFLA) in snipe/snipe-it CWE-862 | 7.6 | High | 2024-06-14 |
| CVE-2022-23064 | Snipe-IT - Host Header Injection CWE-74 | 8.8 | High | 2022-05-02 |
All 6 known CVE vulnerabilities affecting snipe-it with full Chinese analysis, references, and POCs where available.