Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

snipe/snipe-it — Vulnerabilities & Security Advisories 26

All 26 CVE vulnerabilities found in snipe/snipe-it, with AI-generated Chinese analysis, references, and POCs.

Vendor: snipe

CVE IDTitleCVSSSeverityPublished
CVE-2023-5511 Cross-Site Request Forgery (CSRF) in snipe/snipe-it CWE-352 4.3 -2023-10-11
CVE-2023-5452 Cross-site Scripting (XSS) - Stored in snipe/snipe-it CWE-79 5.4 -2023-10-06
CVE-2022-3173 Improper Authentication in snipe/snipe-it CWE-287 7.1 -2022-09-17
CVE-2022-3035 Cross-site Scripting (XSS) - Stored in snipe/snipe-it CWE-79 5.4 -2022-08-29
CVE-2022-2997 Session Fixation in snipe/snipe-it CWE-384 7.6 -2022-08-25
CVE-2022-1511 Missing Authorization in snipe/snipe-it CWE-862 4.3 -2022-04-28
CVE-2022-1445 Stored Cross Site Scripting vulnerability in the checked_out_to parameter in snipe/snipe-it CWE-79 5.4 -2022-04-24
CVE-2022-1380 Stored Cross Site Scripting vulnerability in Item name parameter in snipe/snipe-it CWE-79 5.4 -2022-04-16
CVE-2022-1155 Old sessions are not blocked by the login enable function. in snipe/snipe-it CWE-840 7.4 -2022-03-30
CVE-2022-0622 Generation of Error Message Containing Sensitive Information in snipe/snipe-it CWE-209 4.3 -2022-02-17
CVE-2022-0611 Missing Authorization in snipe/snipe-it CWE-862 6.3 Medium2022-02-15
CVE-2022-0579 Missing Authorization in snipe/snipe-it CWE-862 6.5 Medium2022-02-14
CVE-2022-0569 Observable Discrepancy in snipe/snipe-it CWE-203 5.3 Medium2022-02-12
CVE-2022-0178 Missing Authorization in snipe/snipe-it CWE-862 6.3 Medium2022-01-13
CVE-2022-0179 Missing Authorization in snipe/snipe-it CWE-862 5.4 -2022-01-12
CVE-2021-4130 Cross-Site Request Forgery (CSRF) in snipe/snipe-it CWE-352 4.3 -2021-12-18
CVE-2021-4108 Cross-site Scripting (XSS) - Stored in snipe/snipe-it CWE-79 5.4 -2021-12-14
CVE-2021-4089 Improper Access Control in snipe/snipe-it CWE-284 5.4 -2021-12-10
CVE-2021-4075 Server-Side Request Forgery (SSRF) in snipe/snipe-it CWE-918 8.1 -2021-12-06
CVE-2021-4018 Cross-site Scripting (XSS) - Stored in snipe/snipe-it CWE-79 5.4 -2021-12-01
CVE-2021-3961 Cross-site Scripting (XSS) - Stored in snipe/snipe-it CWE-79 5.4 -2021-11-19
CVE-2021-3931 Cross-Site Request Forgery (CSRF) in snipe/snipe-it CWE-352 4.3 -2021-11-13
CVE-2021-3938 Cross-site Scripting (XSS) - Generic in snipe/snipe-it CWE-79 5.4 -2021-11-13
CVE-2021-3879 Cross-site Scripting (XSS) - Stored in snipe/snipe-it CWE-79 5.4 -2021-10-19
CVE-2021-3863 Cross-site Scripting (XSS) - Generic in snipe/snipe-it CWE-79 5.4 -2021-10-19
CVE-2021-3858 Cross-Site Request Forgery (CSRF) in snipe/snipe-it CWE-352 4.3 -2021-10-19

All 26 known CVE vulnerabilities affecting snipe/snipe-it with full Chinese analysis, references, and POCs where available.