[MEDIUM] Snipe-IT's selectlist visibility is too permissive

PKSA-bd8t-dph3-gby8 CVE-2026-48492 GHSA-f3c5-6cw8-fg57

Affected package: snipe/snipe-it

Affected version: <8.5.1

Reported by:
GitHub