Oliver Gorwits

4 exploits Active since Sep 2019
CVE-2019-15810 WRITEUP MEDIUM WRITEUP
Netdisco 2.042010 - Reflected Cross-Site Scripting via Device Search URL Parameter
Insufficient sanitization during device search in Netdisco 2.042010 allows for reflected XSS via manipulation of a URL parameter.
CVSS 6.1
CVE-2023-37623 WRITEUP MEDIUM WRITEUP
netdisco < 2.063000 - Cross-Site Scripting via TypeAhead.pm
Netdisco before v2.063000 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Web/TypeAhead.pm.
CVSS 4.8
CVE-2023-37623 WRITEUP MEDIUM WRITEUP
netdisco < 2.063000 - Cross-Site Scripting via TypeAhead.pm
Netdisco before v2.063000 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Web/TypeAhead.pm.
CVSS 4.8
CVE-2023-37624 WRITEUP MEDIUM WRITEUP
netdisco < 2.063000 - Open Redirect via Crafted Links
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.
CVSS 6.1