Security Advisories - snipe/snipe-it - Packagist

snipe/snipe-it Security Advisories for v7.0.12 (4)

[MEDIUM] Snipe-IT allows unsafe deserialization

PKSA-xzw3-k89w-sm61 CVE-2025-59713 GHSA-phwj-fgch-xvrj

Affected version: <8.1.18

Reported by:
GitHub
[MEDIUM] Snipe-IT allows XSS

PKSA-hsvj-t2cd-6x2t CVE-2025-59712 GHSA-c9wp-pr7f-hfqm

Affected version: <8.1.18

Reported by:
GitHub
[MEDIUM] Grokability Snipe-IT has incorrect authorization for accessing asset information

PKSA-vcwy-q31n-p6vy CVE-2025-47226 GHSA-h3vp-qwmx-5j25

Affected version: <8.1.0

Reported by:
GitHub
[HIGH] Cross Site Scripting vulnerability in Snipe-IT

PKSA-b5q2-426v-y91n CVE-2024-51093 GHSA-hw9x-8m75-4vjq

Affected version: <=7.0.13

Reported by:
GitHub