Elasticsearch Kibana Cross-Site Request Forgery Vulnerability (CNVD-2017-15522)
Elasticsearch Kibana is a suite of open source, browser-based tools for analyzing and searching Elasticsearch dashboards. A cross-site request forgery vulnerability exists in Elasticsearch Kibana that allows remote attackers to construct malicious URIs, trick users into parsing them, and can targ...