CVE-2019-10118

Publication date

2019-03-27 03:54:11

Family

mitre

State

PUBLISHED

Description

Snipe-IT before 4.6.14 has XSS, as demonstrated by log_meta values and the users last name in the API.