Описание
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability.
A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.
EPSS
6.8 Medium
CVSS3
Дефекты
Связанные уязвимости
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.
Уязвимость плагина для визуализации данных в системе мониторинга Grafana XY Chart Plugin, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю выполнить атаку типа DOM-based XSS
EPSS
6.8 Medium
CVSS3