CVE-2025-65622
Snipe-IT before 8.3.4 allows stored XSS via the Locations “Country” field, enabling a low-privileged authenticated user to inject JavaScript that executes in another user’s session.
More information : http://snipeitapp.com
Snipe-IT before 8.3.4 allows stored XSS via the Locations “Country” field, enabling a low-privileged authenticated user to inject JavaScript that executes in another user’s session.
More information : http://snipeitapp.com