CVE-2025-64027 | Grokability Snipe-IT 8.3.4 CSV Import /livewire/update progress_message cross site scripting

A vulnerability was found in Grokability Snipe-IT 8.3.4. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /livewire/update of the component CSV Import. Performing manipulation of the argument progress_message results in cross site scripting.

This vulnerability is identified as CVE-2025-64027. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More