CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

CNNVD•added 2026/04/07 12:0 a.m.•6 views

Checkmk 安全漏洞

Checkmk is an IT monitoring platform developed by Checkmk Corporation. Vulnerabilities exist in versions of Checkmk prior to 2.2.0, 2.3.0p46, 2.4.0p25, and 2.5.0b3. These vulnerabilities stem from insufficient cleanup of title links in dashboard widgets. An attacker with permission to create...

8.5CVSS5.8AI score0.00035EPSS

Exploits0References2

RedhatCVE•added 2026/01/16 2:23 p.m.•5 views

CVE-2026-22643

In Grafana, an excessively long dashboard title or panel name will cause Chromium browsers to become unresponsive due to Improper Input Validation vulnerability in Grafana. This issue affects Grafana: before 11.6.2 and is fixed in 11.6.2 and higher...

8.3CVSS6.8AI score0.00079EPSS

Exploits0References1

Vulnrichment•added 2026/01/15 1:13 p.m.•1 views

CVE-2026-22643

...

5.3AI score0.00079EPSS

Exploits0

CVE•added 2026/01/15 1:13 p.m.•12 views

CVE-2026-22643

Grafana contains an Improper Input Validation vulnerability where excessively long dashboard titles or panel names can render Chromium browsers unresponsive. Affects Grafana versions before 11.6.2; fixed in 11.6.2 and newer. Remediation: update to Grafana 11.6.2+.

6.4AI score0.00079EPSS

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-18570

Malicious code in bioql PyPI...

2.7CVSS6.3AI score0.00353EPSS

Exploits0References3

OSV•added 2025/07/28 7:57 p.m.•2 views

GO-2025-3766 Grafana long dashboard title or panel name causes unresponsives in github.com/grafana/grafana

Grafana long dashboard title or panel name causes unresponsives in github.com/grafana/grafana. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from vulnerability...

2.7CVSS5.9AI score0.00353EPSS

Exploits0References3

OSV•added 2025/06/20 5:44 a.m.•3 views

BIT-GRAFANA-2025-1088 Very long unicode dashboard title or panel name can hang the frontend

2.7CVSS3.5AI score0.00353EPSS

Exploits0References2

ATTACKERKB•added 2023/09/05 10:15 p.m.•0 views

CVE-2023-34637

A stored cross-site scripting XSS vulnerability in IsarNet AG IsarFlow v5.23 allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the IsarFlow Portal...

5.4CVSS6.2AI score0.00132EPSS

Exploits1References2

OSV•added 2023/09/05 10:15 p.m.•1 views

CVE-2023-34637

5.4CVSS5.9AI score

Exploits0References1

NVD•added 2023/09/05 10:15 p.m.•11 views

CVE-2023-34637

5.4CVSS5.2AI score0.00132EPSS

Exploits1References1

Cvelist•added 2023/09/05 12:0 a.m.•9 views

CVE-2023-34637

5.4AI score0.00132EPSS

Exploits1References1

Positive Technologies•added 2023/09/05 12:0 a.m.•2 views

PT-2023-24961 · Isarnet Ag · Isarflow

Name of the Vulnerable Software and Affected Versions: IsarNet AG IsarFlow version 5.23 Description: A stored cross-site scripting XSS vulnerability allows authenticated attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the dashboard title parameter in the...

5.4CVSS5.7AI score0.00132EPSS

Exploits1References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by