CVE-2026-55475: CWE-863: Incorrect Authorization in grokability snipe-it
Snipe-IT versions prior to 8.6.1 contain an authorization vulnerability in the Importer API endpoint. A user with CSV import permissions and a valid API key can overwrite the created_by field of an…
Read the full article10h agoen
You might also wanna read
CVE-2026-6804: CWE-862 Missing Authorization in wupsales AI Copilot – Content Generator
radar.offseq.com·1h ago
CVE-2026-3552: CWE-862 Missing Authorization in surflabtech SurfLink – Link Manager & Backup Restore
radar.offseq.com·1h ago
CVE-2026-9738: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in printfriendly Print, PDF & Email by PrintFriendly
radar.offseq.com·1h ago
CVE-2026-7620: CWE-862 Missing Authorization in rainafarai Notification for Telegram
radar.offseq.com·1h ago
CVE-2026-6803: CWE-862 Missing Authorization in wupsales AI Copilot – Content Generator
radar.offseq.com·1h ago
CVE-2026-7559: CWE-862 Missing Authorization in redefiningtheweb Affiliate Program & Referral Tracking for WooCommerce & WordPress – Affilia
radar.offseq.com·1h ago
Comments
Sign in to join the conversation.
No comments yet. Be the first.