minhquan202/Vuln-Netbox

GitHub

github.com

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-40737 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-ports/add.
CVE-2024-40742 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/add.
CVE-2024-40741 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/{id}/edit/.
CVE-2024-40740 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/{id}/edit/.
CVE-2024-40739 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/add.
CVE-2024-40738 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-ports/{id}/edit/.
CVE-2024-40729 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/add/.
CVE-2024-40732 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/add/.
CVE-2024-40733 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/{id}/edit/.
CVE-2024-40734 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/add/.
CVE-2024-40735 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/{id}/edit/.
CVE-2024-40736 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/add.
CVE-2024-40731 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/{id}/edit/.
CVE-2024-40730 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/{id}/edit/.
CVE-2024-40728 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/{id}/edit/.
CVE-2024-40727 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/add/.
CVE-2024-40726 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/{id}/edit/.
CVE-2024-38972 ↗	Jul 9, 2024Tuesday, 9 July 2024, 18:15	6.1 MEDIUM	—
A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/add/.