Netbox

Netbox

45 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2024-40741

Exploit
  • EPSS 0.1%
  • Veröffentlicht 09.07.2024 18:15:12
  • Zuletzt bearbeitet 21.11.2024 09:31:33

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/{id}/edit/.

6.1

CVE-2024-40742

Exploit
  • EPSS 0.18%
  • Veröffentlicht 09.07.2024 18:15:12
  • Zuletzt bearbeitet 21.11.2024 09:31:33

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/add.

6.1

CVE-2024-40726

Exploit
  • EPSS 0.18%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:30

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-ports/{id}/edit/.

6.1

CVE-2024-40736

Exploit
  • EPSS 0.31%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:32

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/add.

6.1

CVE-2024-40735

Exploit
  • EPSS 0.31%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:32

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-outlets/{id}/edit/.

6.1

CVE-2024-40734

Exploit
  • EPSS 0.4%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:32

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/add/.

6.1

CVE-2024-40733

Exploit
  • EPSS 0.4%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:31

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/front-ports/{id}/edit/.

6.1

CVE-2024-40732

Exploit
  • EPSS 0.28%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:31

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/add/.

6.1

CVE-2024-40731

Exploit
  • EPSS 0.31%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:31

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/{id}/edit/.

6.1

CVE-2024-40730

Exploit
  • EPSS 0.4%
  • Veröffentlicht 09.07.2024 18:15:11
  • Zuletzt bearbeitet 21.11.2024 09:31:31

A cross-site scripting (XSS) vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/interfaces/{id}/edit/.