Vulnerabilities > Netbox > Netbox > 2.1.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-26 | CVE-2024-0948 | Cross-site Scripting vulnerability in Netbox ** DISPUTED ** A vulnerability, which was classified as problematic, has been found in NetBox up to 3.7.0. | 6.1 |
| 2020-12-31 | CVE-2019-25011 | Cross-site Scripting vulnerability in Netbox NetBox through 2.6.2 allows an Authenticated User to conduct an XSS attack against an admin via a GFM-rendered field, as demonstrated by /dcim/sites/add/ comments. | 5.4 |