Vulnerabilities > Snipeitapp

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2021-3879 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
low complexity
snipeitapp CWE-79
5.4
2019-03-27 CVE-2019-10118 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.
network
low complexity
snipeitapp CWE-79
6.1