Vulnerabilities (CVE)

Filtered by vendor Netdisco Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-37623 1 Netdisco 1 Netdisco 2024-02-05 N/A 4.8 MEDIUM
Netdisco before v2.063000 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /Web/TypeAhead.pm.
CVE-2023-37624 1 Netdisco 1 Netdisco 2024-02-05 N/A 6.1 MEDIUM
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links.
CVE-2019-15810 1 Netdisco 1 Netdisco 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Insufficient sanitization during device search in Netdisco 2.042010 allows for reflected XSS via manipulation of a URL parameter.