Vulnerabilities > Snipeitapp > Snipe IT

DATE CVE VULNERABILITY TITLE RISK
2021-11-19 CVE-2021-3961 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
snipeitapp CWE-79
3.5
3.5
2021-11-13 CVE-2021-3931 Cross-Site Request Forgery (CSRF) vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Cross-Site Request Forgery (CSRF) 		4.3
4.3
2021-11-13 CVE-2021-3938 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
snipeitapp CWE-79
3.5
3.5
2021-10-19 CVE-2021-3858 Cross-Site Request Forgery (CSRF) vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Cross-Site Request Forgery (CSRF) 		6.8
6.8
2021-10-19 CVE-2021-3863 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
snipeitapp CWE-79
4.3
4.3
2021-10-19 CVE-2021-3879 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
snipe-it is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
network
snipeitapp CWE-79
3.5
3.5
2019-03-27 CVE-2019-10118 Cross-site Scripting vulnerability in Snipeitapp Snipe-It
Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.
network
snipeitapp CWE-79
4.3
4.3