Snipe Snipe-It vulnerabilities
26 known vulnerabilities affecting snipe/snipe_snipe-it.
Total CVEs
26
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH7MEDIUM19
Vulnerabilities
Page 2 of 2
CVE-2022-3173P4MEDIUMCVSS 4.3≥ unspecified, < 6.0.102022-09-17
CVE-2022-3173 [MEDIUM] CWE-287 CVE-2022-3173: Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10.
Improper Authentication in GitHub repository snipe/snipe-it prior to 6.0.10.
nvd
CVE-2022-3035P4MEDIUMCVSS 4.8≥ unspecified, < v6.0.112022-08-29
CVE-2022-3035 [MEDIUM] CWE-79 CVE-2022-3035: Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.0.11.
Cross-site Scripting (XSS) - Stored in GitHub repository snipe/snipe-it prior to v6.0.11.
nvd
CVE-2022-0569P4MEDIUMCVSS 4.3≥ unspecified, < v5.3.92022-02-14
CVE-2022-0569 [MEDIUM] CWE-203 CVE-2022-0569: Observable Discrepancy in Packagist snipe/snipe-it prior to v5.3.9.
Observable Discrepancy in Packagist snipe/snipe-it prior to v5.3.9.
nvd
CVE-2021-3931P4MEDIUMCVSS 4.3≥ unspecified, ≤ 5.3.12021-11-13
CVE-2021-3931 [MEDIUM] CWE-352 CVE-2021-3931: snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
nvd
CVE-2022-0179MEDIUMCVSS 5.4≥ unspecified, < 5.3.62022-01-12
CVE-2022-0179 [MEDIUM] CWE-862 Missing Authorization in snipe/snipe-it
Missing Authorization in snipe/snipe-it
snipe-it is vulnerable to Missing Authorization
cvelistv5
CVE-2021-4089MEDIUMCVSS 4.3≥ unspecified, < N/A2021-12-10
CVE-2021-4089 [MEDIUM] CWE-284 Improper Access Control in snipe/snipe-it
Improper Access Control in snipe/snipe-it
snipe-it is vulnerable to Improper Access Control
cvelistv5
← Previous2 / 2