14 matches found
EUVD-2024-0278
Malicious code in bioql PyPI...
EUVD-2022-3395
Malicious code in bioql PyPI...
EUVD-2024-0336
Malicious code in bioql PyPI...
GHSA-6WH2-8HW7-JW94 Grafana XSS via adding a link in General feature
Grafana 5.3.1 has XSS via a link on the "Dashboard All Panels General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
GHSA-CMQ2-J8V8-2Q44 Grafana XSS in Dashboard Text Panel
Grafana 5.3.1 has XSS via the "Dashboard Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
SUSE CVE-2018-18625
Grafana 5.3.1 has XSS via a link on the "Dashboard All Panels General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
Grafana XSS via a column style
Grafana has a XSS vulnerability via a column style on the "Dashboard Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
grafana: XSS vulnerability via a column style on the "Dashboard > Table Panel" screen
A flaw was found in grafana. An incomplete fix for CVE-2018-12099 allows for a XSS via a column style on the "Dashboard Table Panel" screen...
CVE-2018-18624
A flaw was found in grafana. An incomplete fix for CVE-2018-12099 allows for a XSS via a column style on the "Dashboard Table Panel" screen...
CVE-2018-18625
Grafana 5.3.1 has XSS via a link on the "Dashboard All Panels General" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099...
CVE-2018-18624
Grafana 5.3.1 is affected by an XSS in the Dashboard > Table Panel (column style). This CVE-2018-18624 entry notes the issue exists due to an incomplete fix for CVE-2018-12099. Connected sources confirm this specific vector (XSS via column style) and link it to Grafana 5.3.1; no additional det...
SUSE-SU-2018:2536-1 Security update for grafana, kafka, logstash and monasca-installer
This update for grafana, kafka, logstash and monasca-installer fixes the following issues: The following security issues have been fixed: grafana: - CVE-2018-12099: Fix Cross-Site-Scripting XSS vulnerabilities in dashboard links. bsc1096985 kafka: - CVE-2018-1288: Authenticated Kafka users may...
CVE-2018-12099
Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links...
CVE-2018-12099
Grafana prior to 5.2.0-beta1 is affected by XSS in dashboard links (CVE-2018-12099). The issue stems from an incomplete fix, with later Nessus entries noting unpatched vectors in Grafana 5.3.1 related to this CVE. Remediation: upgrade to Grafana 5.2.0-beta1 or newer where the fix is included.