Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/05/27 5:6 p.m.8 views

CVE-2026-46425

Budibase contains a SCIM authorization flaw prior to version 3.38.2: the SCIM router (packages/worker/src/api/routes/global/scim.ts) attaches only requireSCIM and doInScimContext middlewares, with no role check. This allows any authenticated user (including BASIC role) who reaches the worker to p...

9.9CVSS5.8AI score0.00044EPSS
Exploits0References2
CNNVD
CNNVDadded 2026/05/27 12:0 a.m.4 views

Budibase 安全漏洞

Budibase is an open-source low-code platform developed by Budibase in the UK. It allows for the creation of internal applications, workflows, and management panels within minutes. Versions of Budibase prior to 3.38.2 contained security vulnerabilities. These vulnerabilities stemmed from a lack of...

9.9CVSS5.9AI score0.00044EPSS
Exploits0References3
OSV
OSVadded 2023/05/24 8:15 p.m.10 views

CVE-2023-33787

A stored cross-site scripting XSS vulnerability in the Create Tenant Groups /tenancy/tenant-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS5.7AI score
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2023/05/24 8:15 p.m.0 views

CVE-2023-33787

A stored cross-site scripting XSS vulnerability in the Create Tenant Groups /tenancy/tenant-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4CVSS6.2AI score0.00285EPSS
Exploits1References2
Prion
Prionadded 2023/05/24 8:15 p.m.11 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Create Tenant Groups /tenancy/tenant-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

4.9CVSS5.3AI score0.00285EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2023/05/24 12:0 a.m.11 views

CVE-2023-33787

A stored cross-site scripting XSS vulnerability in the Create Tenant Groups /tenancy/tenant-groups/ function of Netbox v3.5.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field...

5.4AI score0.00285EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/05/24 12:0 a.m.2 views

PT-2023-24490 · Netbox · Netbox

Name of the Vulnerable Software and Affected Versions: Netbox version 3.5.1 Description: A stored cross-site scripting XSS issue exists in the Create Tenant Groups function, specifically at the /tenancy/tenant-groups/ API endpoint, allowing attackers to execute arbitrary web scripts or HTML by...

5.4CVSS5.4AI score0.00285EPSS
Exploits1References3
CVE
CVEadded 2023/05/24 12:0 a.m.43 views

CVE-2023-33787

The CVE-2023-33787 entry concerns a stored cross-site scripting (XSS) vulnerability in NetBox v3.5.1, specifically in the Create Tenant Groups API at /tenancy/tenant-groups/ where a crafted payload in the Name field can execute arbitrary web scripts/HTML. Affected component: the Create Tenant Gro...

5.4CVSS5.2AI score0.00285EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder