snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
References
Link | Resource |
---|---|
https://github.com/snipe/snipe-it/commit/84c73aae5dcafa9529ceeeda6e8cdda5a42129c3 | Patch Third Party Advisory |
https://huntr.dev/bounties/a2fac2eb-100d-45b1-9ac7-71847c2f2b6b | Exploit Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-10-19T12:30:29
Updated: 2021-10-19T12:30:29
Reserved: 2021-10-04T00:00:00
Link: CVE-2021-3858
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-19T13:15:11.673
Modified: 2021-10-20T22:14:22.760
Link: CVE-2021-3858
JSON object: View
Redhat Information
No data.
CWE