Snipe-It · Snipe-It · CVE-2019-10118
Name of the Vulnerable Software and Affected Versions:
Snipe-IT versions prior to 4.6.14
Description:
The issue allows for XSS, as demonstrated by `log meta` values and the user's last name in the "API".
Recommendations:
For versions prior to 4.6.14, update to version 4.6.14 or later to resolve the issue.