Количество 391
Количество 391
CVE-2018-18623
Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2018-18623
Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
CVE-2018-18623
Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: t ...
CVE-2018-1000816
Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. This attack appear to be exploitable via Authenticated user must click on the input field where the payload was previously inserted..
CVE-2018-1000816
Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. This attack appear to be exploitable via Authenticated user must click on the input field where the payload was previously inserted..
CVE-2018-1000816
Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. This attack appear to be exploitable via Authenticated user must click on the input field where the payload was previously inserted..
CVE-2018-1000816
Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Sc ...
BDU:2023-03204
Уязвимость веб-инструмента представления данных Grafana, связанная с ошибками синхронизации, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2022-03373
Уязвимость веб-инструмента представления данных Grafana, связанная с возможностью обхода процедуры аутентификации, позволяющая нарушителю повысить свои привилегии путем отправки специально сформированного HTTP-запроса
RLSA-2022:5717
Important: grafana security update
GHSA-xr3x-62qw-vc4w
Grafana stored XSS
GHSA-xc3p-28hw-q24g
Grafana proxy Cross-site Scripting
GHSA-vw7q-p2qg-4m5f
Grafana Stored Cross-site Scripting in Unified Alerting
GHSA-rhxj-gh46-jvw8
Grafana Plugin signature bypass
GHSA-rgjg-66cx-5x9m
Grafana Authentication Bypass
GHSA-mx47-6497-3fv2
Grafana account takeover via OAuth vulnerability
GHSA-h5rh-w6vm-9ghc
Denial of service in Grafana
GHSA-cmf4-h3xc-jw8w
Grafana Cross Site Request Forgery (CSRF)
GHSA-63g3-9jq3-mccv
Grafana API IDOR
GHSA-3jq7-8ph8-63xm
Grafana information disclosure
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-18623 Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. | CVSS3: 6.1 | 0% Низкий | больше 5 лет назад |
 | CVE-2018-18623 Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099. | CVSS3: 6.1 | 0% Низкий | больше 5 лет назад |
| CVE-2018-18623 Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: t ... | CVSS3: 6.1 | 0% Низкий | больше 5 лет назад |
 | CVE-2018-1000816 Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. This attack appear to be exploitable via Authenticated user must click on the input field where the payload was previously inserted.. | CVSS3: 5.4 | 1% Низкий | почти 7 лет назад |
| CVE-2018-1000816 Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. This attack appear to be exploitable via Authenticated user must click on the input field where the payload was previously inserted.. | CVSS3: 5.4 | 1% Низкий | около 7 лет назад |
| CVE-2018-1000816 Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting (XSS) vulnerability in Influxdb and Graphite query editor that can result in Running arbitrary js code in victims browser.. This attack appear to be exploitable via Authenticated user must click on the input field where the payload was previously inserted.. | CVSS3: 5.4 | 1% Низкий | почти 7 лет назад |
| CVE-2018-1000816 Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Sc ... | CVSS3: 5.4 | 1% Низкий | почти 7 лет назад |
 | BDU:2023-03204 Уязвимость веб-инструмента представления данных Grafana, связанная с ошибками синхронизации, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 1% Низкий | больше 2 лет назад |
| BDU:2022-03373 Уязвимость веб-инструмента представления данных Grafana, связанная с возможностью обхода процедуры аутентификации, позволяющая нарушителю повысить свои привилегии путем отправки специально сформированного HTTP-запроса | CVSS3: 9.8 | 62% Средний | больше 3 лет назад |
 | RLSA-2022:5717 Important: grafana security update | 0% Низкий | больше 3 лет назад | |
| GHSA-xr3x-62qw-vc4w Grafana stored XSS | CVSS3: 5.4 | 76% Высокий | больше 3 лет назад |
| GHSA-xc3p-28hw-q24g Grafana proxy Cross-site Scripting | CVSS3: 6.8 | 1% Низкий | больше 1 года назад |
| GHSA-vw7q-p2qg-4m5f Grafana Stored Cross-site Scripting in Unified Alerting | CVSS3: 7.3 | 32% Средний | больше 1 года назад |
| GHSA-rhxj-gh46-jvw8 Grafana Plugin signature bypass | CVSS3: 6.1 | 0% Низкий | больше 1 года назад |
| GHSA-rgjg-66cx-5x9m Grafana Authentication Bypass | CVSS3: 9.8 | 75% Высокий | больше 3 лет назад |
| GHSA-mx47-6497-3fv2 Grafana account takeover via OAuth vulnerability | CVSS3: 7.1 | 0% Низкий | больше 1 года назад |
| GHSA-h5rh-w6vm-9ghc Denial of service in Grafana | CVSS3: 8.2 | 76% Высокий | больше 3 лет назад |
| GHSA-cmf4-h3xc-jw8w Grafana Cross Site Request Forgery (CSRF) | CVSS3: 6.8 | 1% Низкий | почти 2 года назад |
| GHSA-63g3-9jq3-mccv Grafana API IDOR | CVSS3: 4.3 | 0% Низкий | больше 1 года назад |
| GHSA-3jq7-8ph8-63xm Grafana information disclosure | CVSS3: 5.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу