Lucene search
K

36 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:53 a.m.7 views

CVE-2023-33785

A stored cross-site scripting XSS vulnerability in the Create Rack Roles /dcim/rack-roles/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.5AI score0.00394EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:3 a.m.12 views

CVE-2023-33800

A stored cross-site scripting XSS vulnerability in the Create Regions /dcim/regions/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.6AI score0.00397EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 8:15 p.m.9 views

CVE-2023-33793

A stored cross-site scripting XSS vulnerability in the Create Power Panels /dcim/power-panels/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00394EPSS
Exploits1References1
OSV
OSV
added 2023/05/24 8:15 p.m.16 views

CVE-2023-33793

A stored cross-site scripting XSS vulnerability in the Create Power Panels /dcim/power-panels/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.7AI score0.00394EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 8:15 p.m.14 views

CVE-2023-33796

A vulnerability in Netbox v3.5.1 allows unauthenticated attackers to execute queries against the GraphQL database, granting them access to sensitive data stored in the database. NOTE: the vendor disputes this because the reporter's only query was for the schema of the API, which is public; querie...

9.1CVSS9.4AI score0.00747EPSS
Exploits1References2
NVD
NVD
added 2023/05/24 8:15 p.m.16 views

CVE-2023-33794

A stored cross-site scripting XSS vulnerability in the Create Tenants /tenancy/tenants/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00415EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 8:15 p.m.14 views

CVE-2023-33789

A stored cross-site scripting XSS vulnerability in the Create Contact Groups /tenancy/contact-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00394EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 8:15 p.m.17 views

CVE-2023-33790

A stored cross-site scripting XSS vulnerability in the Create Locations /dcim/locations/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00394EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 8:15 p.m.16 views

CVE-2023-33786

A stored cross-site scripting XSS vulnerability in the Create Circuit Types /circuits/circuit-types/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00394EPSS
Exploits1References1
NVD
NVD
added 2023/05/24 8:15 p.m.21 views

CVE-2023-33797

A stored cross-site scripting XSS vulnerability in the Create Sites /dcim/sites/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00415EPSS
Exploits1References1
OSV
OSV
added 2023/05/24 8:15 p.m.14 views

CVE-2023-33798

A stored cross-site scripting XSS vulnerability in the Create Rack /dcim/rack/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.7AI score
Exploits0References1
OSV
OSV
added 2023/05/24 8:15 p.m.12 views

CVE-2023-33792

A stored cross-site scripting XSS vulnerability in the Create Site Groups /dcim/site-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.7AI score
Exploits0References1
NVD
NVD
added 2023/05/24 8:15 p.m.18 views

CVE-2023-33795

A stored cross-site scripting XSS vulnerability in the Create Contact Roles /tenancy/contact-roles/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.3AI score0.00394EPSS
Exploits1References1
Prion
Prion
added 2023/05/24 8:15 p.m.13 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Rack /dcim/rack/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00394EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/05/24 8:15 p.m.21 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Site Groups /dcim/site-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00394EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/05/24 8:15 p.m.17 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Provider Accounts /circuits/provider-accounts/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00394EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/05/24 8:15 p.m.14 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Providers /circuits/providers/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00415EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/05/24 8:15 p.m.20 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Tenants /tenancy/tenants/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00415EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/05/24 8:15 p.m.20 views

Design/Logic Flaw

A vulnerability in Netbox v3.5.1 allows unauthenticated attackers to execute queries against the GraphQL database, granting them access to sensitive data stored in the database. NOTE: the vendor disputes this because the reporter's only query was for the schema of the API, which is public; querie...

6.4CVSS9.3AI score0.00747EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/05/24 8:15 p.m.20 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Contacts /tenancy/contacts/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00394EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder