Vulners
Lucene search
The vulnerability of the Grafana monitoring and observation platform lies in the improper handling of input during the creation of a web page. This allows a hacker to inject the entered URL address into the system.
🗓️ 05 Apr 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec🔗 bdu.fstec.ru👁 2 Views
| Reporter | Title | Published | Views | Family All 98 |
|---|---|---|---|---|
 | Security Bulletin: IBM Storage Ceph is vulnerable to Cross Site Scripting in Grafana (CVE-2022-39324) | 18 Jan 202414:20 | – | ibm |
| Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities. | 11 Apr 202311:47 | – | ibm |
 | Moderate: grafana security and enhancement update | 7 Nov 202300:00 | – | almalinux |
 | CVE-2022-39324 vulnerabilities | 27 Jan 202323:15 | – | cgr |
 | CVE-2022-39324 | 28 Jan 202302:34 | – | circl |
 | Grafana 跨站脚本漏洞 | 27 Jan 202300:00 | – | cnnvd |
 | CVE-2022-39324 | 27 Jan 202322:42 | – | cve |
 | CVE-2022-39324 Grafana vulnerable to spoofing originalUrl of snapshots | 27 Jan 202322:42 | – | cvelist |
 | Grafana -- Spoofing originalUrl of snapshots | 25 Jan 202300:00 | – | freebsd |
| Grafana -- Stored XSS in ResourcePicker component | 16 Dec 202200:00 | – | freebsd |
10
Node
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
05 Apr 2024 00:00Current
6.8Medium risk
Vulners AI Score6.8
CVSS 33.5
CVSS 24
EPSS0.00828