Lucene search
K

12 matches found

SUSE CVE
SUSE CVE
added 2023/10/31 2:26 a.m.3 views

SUSE CVE-2021-23648

The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function...

6.1CVSS8AI score0.01423EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2022/11/15 10:31 a.m.40 views

Important: Red Hat Security Advisory: grafana security, bug fix, and enhancement update

An update for grafana is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

8.8CVSS6.9AI score0.05994EPSS
Exploits5References19
OSV
OSV
added 2022/11/15 12:0 a.m.33 views

ALSA-2022:8057 Important: grafana security, bug fix, and enhancement update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB & OpenTSDB. The following packages have been upgraded to a later upstream version: grafana 7.5.15. BZ2055349 Security Fixes: sanitize-url: XSS due to improper sanitization in sanitizeUrl function...

8.8CVSS9.5AI score0.05994EPSS
Exploits5References32
Tenable Nessus
Tenable Nessus
added 2022/11/12 12:0 a.m.54 views

AlmaLinux 8 : grafana (ALSA-2022:7519)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2022:7519 advisory. - The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function...

8.8CVSS7.2AI score0.05994EPSS
Exploits5References16
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.46 views

CentOS 8 : grafana (CESA-2022:7519)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2022:7519 advisory. - sanitize-url: XSS due to improper sanitization in sanitizeUrl function CVE-2021-23648 - golang: net/http: improper sanitization of Transfer-Encoding...

8.8CVSS7.2AI score0.05994EPSS
Exploits5References16
RedHat Linux
RedHat Linux
added 2022/11/08 9:34 a.m.32 views

Moderate: Red Hat Security Advisory: grafana security, bug fix, and enhancement update

An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

8.8CVSS6.9AI score0.05994EPSS
Exploits5References18
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.36 views

Fedora: Security Advisory for grafana (FEDORA-2022-83405f9d5b)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.9AI score0.05994EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.27 views

Fedora: Security Advisory for grafana (FEDORA-2022-9dd03cab55)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS8.9AI score0.05994EPSS
Exploits2References2
vulnersOsv
vulnersOsv
added 2022/03/17 12:0 a.m.4 views

@0xgg/echomd (>=1.0.0 <=1.0.4), @adobe/parliament-ui-components (>=4.6.0 <=5.1.0) +718 more potentially affected by CVE-2021-23648 via @braintree/sanitize-url (>=1.0.0 <=5.0.2)

@braintree/sanitize-url NPM version =1.0.0, =1.0.0, =4.6.0, =2.6.1, =0.1.0, =0.0.18, =6.8.0, =0.1.2, =2.2.2, =0.5.0, =3.23.0, =0.0.0-nightly-2020972106, =0.1.1-alpha.19, =0.1.0, =0.1.0-integrate-flowzone-f2df00320763c10337790c7657713f782ca7a948 and more Source cves: CVE-2021-23648 Source advisory...

6.1CVSS6.6AI score0.01423EPSS
Exploits1
NVD
NVD
added 2022/03/16 4:15 p.m.18 views

CVE-2021-23648

The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function...

6.1CVSS0.01423EPSS
Exploits1References7
OSV
OSV
added 2022/03/16 4:15 p.m.22 views

CVE-2021-23648

The package @braintree/sanitize-url before 6.0.0 are vulnerable to Cross-site Scripting XSS due to improper sanitization in sanitizeUrl function...

6.1CVSS6AI score
Exploits0References7
CVE
CVE
added 2022/03/16 3:45 p.m.197 views

CVE-2021-23648

CVE-2021-23648 affects the package @braintree/sanitize-url prior to 6.0.0, which is vulnerable to Cross-site Scripting (XSS) due to improper sanitization in the sanitizeUrl function. This is supported by connected documents that list the vulnerability and the affected version range. The vulnerabi...

6.1CVSS6.5AI score0.01423EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder