snipe-it is vulnerable to Cross-Site Request Forgery (CSRF)
References
Link | Resource |
---|---|
https://github.com/snipe/snipe-it/commit/9b2dd6522f214a3fbee6a4e32699104d0ea2b6ae | Patch Third Party Advisory |
https://huntr.dev/bounties/ccf073cd-7f54-4d51-89f2-6b4a2e4ae81e | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: @huntrdev
Published: 2021-12-18T04:40:10
Updated: 2021-12-18T04:40:10
Reserved: 2021-12-17T00:00:00
Link: CVE-2021-4130
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-18T05:15:08.847
Modified: 2021-12-21T15:57:17.927
Link: CVE-2021-4130
JSON object: View
Redhat Information
No data.
CWE