Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/01/15 1:14 p.m.4 views

CVE-2026-22644

Certain requests pass the authentication token in the URL as string query parameter, making it vulnerable to theft through server logs, proxy logs and Referer headers, which could allow an attacker to hijack the user's session and gain unauthorized access...

7.5CVSS5.5AI score0.00478EPSS
Exploits0References7
OSV
OSV
added 2025/02/28 3:32 p.m.6 views

OESA-2025-1186 grafana security update

Grafana is an open source, feature rich metrics dashboard and graph editor for Graphite, InfluxDB OpenTSDB. Security Fixes: Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored...

8.7CVSS6.7AI score0.68603EPSS
Exploits0References10
Veracode
Veracode
added 2024/12/23 12:22 p.m.15 views

Authentication Token Leakage

github.com/cli/cli is vulnerable to authentication token leakage. The vulnerability is due to improper handling of the credential.helper configuration when cloning repositories with git submodules hosted outside of GitHub.com and ghe.com, causing authentication tokens to be exposed...

6.5CVSS6.9AI score0.00279EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2022/10/13 11:15 p.m.42 views

CVE-2022-31130

Grafana is an open source observability and data visualization platform. Versions of Grafana for endpoints prior to 9.1.8 and 8.5.14 could leak authentication tokens to some destination plugins under some conditions. The vulnerability impacts data source and plugin proxy endpoints with...

7.5CVSS1.4AI score0.00964EPSS
Exploits0
Rows per page
Query Builder