snipe-it is vulnerable to Server-Side Request Forgery (SSRF)
References
Link | Resource |
---|---|
https://github.com/snipe/snipe-it/commit/4612b9e711b3ff5d2bcddbec5b18866d25f8e34e | Patch Third Party Advisory |
https://huntr.dev/bounties/4386fd8b-8c80-42bb-87b8-b506c46597de | Exploit Issue Tracking Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-12-06T20:20:10
Updated: 2021-12-06T20:20:10
Reserved: 2021-12-06T00:00:00
Link: CVE-2021-4075
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-06T21:15:07.907
Modified: 2021-12-07T17:22:45.857
Link: CVE-2021-4075
JSON object: View
Redhat Information
No data.
CWE