CVE-2025-63743 | Snipe-IT Web-based Asset Management System 8.3.0/8.3.1 Display Name Name/Surname cross site scripting

A vulnerability marked as problematic has been reported in Snipe-IT Web-based Asset Management System 8.3.0/8.3.1. This impacts an unknown function of the component Display Name Handler. The manipulation of the argument Name/Surname leads to cross site scripting.

This vulnerability is traded as CVE-2025-63743. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More