892 matches found
CVE-2022-47439
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rocket Apps Open Graphite plugin = 1.6.0 versions...
Cross site scripting
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rocket Apps Open Graphite plugin = 1.6.0 versions...
CVE-2022-47439 WordPress Open Graphite Plugin <= 1.6.0 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Rocket Apps Open Graphite plugin = 1.6.0 versions...
CVE-2022-47439
CVE-2022-47439 affects WordPress plugin Open Graphite (Rocket Apps)
Wordpress plugin Open Graphite 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...
PT-2023-15315 · Rocket Apps · Rocket Apps Open Graphite Plugin
Name of the Vulnerable Software and Affected Versions: Rocket Apps Open Graphite plugin versions = 1.6.0 Description: The issue is related to an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an attacker can inject malicious scripts into a website, potentially allowing...
Stored Cross-Site Scripting (XSS)
github.com/grafana/grafana is vulnerable to Stored Cross-Site Scripting XSS. A Graphite data source can be used for Functions, but sanitization is not done when adding them to the DOM, allowing an attacker to host a Graphite instance with a modified Function description containing a XSS payload...
GHSA-QRRG-GW7W-VP76 Grafana Stored Cross-site Scripting in Graphite FunctionDescription tooltip
Summary When a Graphite data source is added, one can use this data source in a dashboard. This contains a feature to use Functions. Once a function is selected, a small tooltip will be shown when hovering over the name of the function. This tooltip will allow you to delete the selected Function...
Grafana Stored Cross-site Scripting in Graphite FunctionDescription tooltip
Summary When a Graphite data source is added, one can use this data source in a dashboard. This contains a feature to use Functions. Once a function is selected, a small tooltip will be shown when hovering over the name of the function. This tooltip will allow you to delete the selected Function...
Duplicate Advisory: Grafana Stored Cross-site Scripting vulnerability
Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-qrrg-gw7w-vp76. This link is maintained to preserve external references. Original Description Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the...
CVE-2023-1410
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
CVE-2023-1410
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
CVE-2023-1410
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
UBUNTU-CVE-2023-1410
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
Cross site scripting
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
CVE-2023-1410 Stored XSS in Graphite FunctionDescription tooltip
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
CVE-2023-1410 Stored XSS in Graphite FunctionDescription tooltip
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
CVE-2023-1410
Grafana (open-source platform) contains a stored XSS in the Graphite FunctionDescription tooltip due to insufficient sanitization. Exploitation requires attacker control of the Graphite data source and an admin to configure it, followed by a user hovering over a tampered function description. Aff...
CVE-2023-1410
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...
Stored XSS in Graphite FunctionDescription tooltip
Grafana is an open-source platform for monitoring and observability. Grafana had a stored XSS vulnerability in the Graphite FunctionDescription tooltip. The stored XSS vulnerability was possible due the value of the Function Description was not properly sanitized. An attacker needs to have contro...