CVE-2022-0179

Description

snipe-it is vulnerable to Improper Access Control/Incorrect Default Permissions.

Affected packages (1)

• Packagist/snipe/snipe-itfrom 0, < 5.3.7

CVSS scores

References (5)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2022-0179
• PATCHhttps://github.com/snipe/snipe-it
• WEBhttps://github.com/snipe/snipe-it/commit/cf14a0222c67472086cd08b2155f045edaf75f2e
• WEBhttps://github.com/snipe/snipe-it/pull/10498
• WEBhttps://huntr.dev/bounties/efdf2ead-f9d1-4767-9f02-d11f762d15e7