Improper Privilege Management in snipe/snipe-it
Feb 11th 2022
It was found that if a user is not having access to supplier module, he can access and view the supplier content.
Proof of Concept
- Create two users, one admin and one normal user
- A normal user is not having access to the supplier module.
- But by enumeration the normal user view the restricted content of supplier by enumeration.
https://demo.snipeitapp.com/suppliers/1 Just enumerate the number, and you will see the details
This vulnerability will help an attacker view restricted content.
snipe validated this vulnerability a year ago
shubh123-tri has been awarded the disclosure bounty
The fix bounty is now up for grabs
to join this conversation