mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-30 02:00:45 +00:00
721 B
721 B
CVE-2022-44381
Description
Snipe-IT through 6.0.14 allows attackers to check whether a user account exists because of response variations in a /password/reset request.
POC
Reference
- https://census-labs.com/news/2022/12/23/multiple-vulnerabilities-in-snipe-it/
- https://census-labs.com/news/2022/12/23/multiple-vulnerabilities-in-snipe-it/
Github
No PoCs found on GitHub currently.