VYPR
Moderate severityOSV Advisory· Published Mar 27, 2019· Updated Aug 4, 2024

CVE-2019-10118

CVE-2019-10118

Description

Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and the user's last name in the API.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
snipe/snipe-itPackagist
< 4.6.144.6.14

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.