| ID | CVE-2025-65621 | ||||||
| Sažetak | Snipe-IT before 8.3.4 allows stored XSS, allowing a low-privileged authenticated user to inject JavaScript that executes in an administrator's session, enabling privilege escalation. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | None | ||||||
| Zadnje važnije ažuriranje | 02-12-2025 - 17:16 | ||||||
| Objavljeno | 01-12-2025 - 21:15 |
