CVE-2026-55481 | grokability Snipe-IT up to 8.6.1 CSS Style Block Renderer default.blade.php cross-domain policy
A vulnerability, which was classified as problematic, has been found in grokability Snipe-IT up to 8.6.1. Affected by this issue is some unknown functionality of the file default.blade.php of the component CSS Style Block Renderer. The manipulation leads to permissive cross-domain policy with untrusted domains.
This vulnerability is traded as CVE-2026-55481. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More