The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.

The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.

The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissions is able to modify such a panel in order to make it execute arbitrary JavaScript.

Уязвимость плагина для визуализации данных в системе мониторинга Grafana XY Chart Plugin, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю выполнить атаку типа DOM-based XSS

Множественные уязвимости grafana

Security update for grafana

Security update for Multi-Linux Manager Client Tools

Security update for Multi-Linux Manager Client Tools