benjaminpsinclair/Netdisco-2023-Advisory

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-37623 ↗	Jul 26, 2023Wednesday, 26 July 2023, 20:15	4.8 MEDIUM	—
Netdisco before v2.063000 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Web/TypeAhead.pm.
CVE-2023-37624 ↗	Jul 26, 2023Wednesday, 26 July 2023, 20:15	6.1 MEDIUM	—
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.