exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 6

CVE-2020-11110

больше 5 лет назад

Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.

CVSS3: 5.4

EPSS: Высокий

CVE-2020-11110

больше 5 лет назад

Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.

CVSS3: 6.1

EPSS: Высокий

CVE-2020-11110

больше 5 лет назад

Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.

CVSS3: 5.4

EPSS: Высокий

CVE-2020-11110

больше 5 лет назад

Grafana through 6.7.1 allows stored XSS due to insufficient input prot ...

CVSS3: 5.4

EPSS: Высокий

GHSA-xr3x-62qw-vc4w

больше 3 лет назад

Grafana stored XSS

CVSS3: 5.4

EPSS: Высокий

ELSA-2020-4682

почти 5 лет назад

ELSA-2020-4682: grafana security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-11110 Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.	CVSS3: 5.4	76% Высокий	больше 5 лет назад
CVE-2020-11110 Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.	CVSS3: 6.1	76% Высокий	больше 5 лет назад
CVE-2020-11110 Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to inject JavaScript code that will be executed after clicking on Open Original Dashboard after visiting the snapshot.	CVSS3: 5.4	76% Высокий	больше 5 лет назад
CVE-2020-11110 Grafana through 6.7.1 allows stored XSS due to insufficient input prot ...	CVSS3: 5.4	76% Высокий	больше 5 лет назад
GHSA-xr3x-62qw-vc4w Grafana stored XSS	CVSS3: 5.4	76% Высокий	больше 3 лет назад
ELSA-2020-4682 ELSA-2020-4682: grafana security, bug fix, and enhancement update (MODERATE)			почти 5 лет назад

Уязвимостей на страницу