3 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-1000816
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Grafana version confirmed for 5.2.4 and 5.3.0 contains a Cross Site Scripting XSS vulnerability in Influxdb and Graphite query editor that can result in Running...
Grafana < 5.3.2 XSS Vulnerability
Grafana is prone to a stored cross-site scripting XSS vulnerability. Copyright C 2019 Greenbone Networks GmbH, https://www.greenbone.net SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public...
CVE-2018-1000816
Grafana (versions 5.2.4 and 5.3.0) has an XSS vulnerability in the InfluxDB and Graphite query editor that can execute arbitrary JavaScript in a victim’s browser. Exploitation requires an authenticated user to click in the input field containing the payload; no remediation or patch details are pr...