CVE-2023-33799
NetBox 3.5.1 contains a stored XSS in the Create Contacts API at /tenancy/contacts/ triggered by crafting the Name field. Multiple sources (NVD/Red Hat/OSV/others) confirm the vulnerability description; no explicit patch/version fix is provided in the documents. Some sources (PT-2023-24502) recom...