2 matches found
CVE-2023-33788
A stored cross-site scripting XSS vulnerability in the Create Providers /circuits/providers/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...
CVE-2023-33788
NetBox firmware: CVE-2023-33788 is a stored XSS in NetBox v3.5.1 affecting the Create Providers endpoint (/circuits/providers/) where a crafted payload in the Name field can execute scripts. The Red Hat, OSV, NVD, CVE lists describe the same issue; exploitation details are not provided in the doc...