5 matches found
CVE-2023-36234
Cross Site Scripting XSS vulnerability in Netbox 3.5.1, allows attackers to execute arbitrary code via Name field in device-roles/add function...
Cross site scripting
Cross Site Scripting XSS vulnerability in Netbox 3.5.1, allows attackers to execute arbitrary code via Name field in device-roles/add function...
CVE-2023-34565
Netbox 3.5.1 is vulnerable to Cross Site Scripting XSS in the "Create Wireless LAN Groups" function...
CVE-2023-34565
Netbox 3.5.1 is vulnerable to Cross Site Scripting XSS in the "Create Wireless LAN Groups" function...
PT-2023-24490 · Netbox · Netbox
Name of the Vulnerable Software and Affected Versions: Netbox version 3.5.1 Description: A stored cross-site scripting XSS issue exists in the Create Tenant Groups function, specifically at the /tenancy/tenant-groups/ API endpoint, allowing attackers to execute arbitrary web scripts or HTML by...