benjaminpsinclair

3 exploits Active since Jul 2023
CVE-2023-37625 NOMISEC MEDIUM WORKING POC
Netbox v3.4.7 - Stored Cross-Site Scripting in Custom Link Templates
A stored cross-site scripting (XSS) vulnerability in Netbox v3.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Custom Link templates.
CVSS 5.4
CVE-2023-37623 WRITEUP MEDIUM WRITEUP
netdisco < 2.063000 - Cross-Site Scripting via TypeAhead.pm
Netdisco before v2.063000 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Web/TypeAhead.pm.
CVSS 4.8
CVE-2023-37624 WRITEUP MEDIUM WRITEUP
netdisco < 2.063000 - Open Redirect via Crafted Links
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.
CVSS 6.1