CVE-2025-47226

MEDIUM

Grokability Snipe-IT <8.1.0 - Info Disclosure

Title source: llm

Description

Grokability Snipe-IT before 8.1.0 has incorrect authorization for accessing asset information.

Exploits (2)

exploitdb WRITEUP
by Sn1p3r-H4ck3r · textwebappsphp
https://www.exploit-db.com/exploits/52282
nomisec WRITEUP
by koyomihack00 · poc
https://github.com/koyomihack00/CVE-2025-47226

References (4)

Scores

CVSS v3 5.0
EPSS 0.0105
EPSS Percentile 77.6%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N

Details

CWE
CWE-639 CWE-425
Status published
Products (2)
snipe/snipe-it 0 - 8.1.0Packagist
snipeitapp/snipe-it < 8.1.0
Published May 02, 2025
Tracked Since Feb 18, 2026