1032 matches found
GHSA-37X5-QPM8-53RQ Google Sheets data source plugin for Grafana information disclosure vulnerability
Grafana is an open-source platform for monitoring and observability. The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability. The plugin did not properly sanitize error messages, making it potentially expose the Google...
Google Sheets data source plugin for Grafana information disclosure vulnerability
Grafana is an open-source platform for monitoring and observability. The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability. The plugin did not properly sanitize error messages, making it potentially expose the Google...
CVE-2023-4457
Grafana is an open-source platform for monitoring and observability. The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability. The plugin did not properly sanitize error messages, making it potentially expose the Google...
CVE-2023-4457
Grafana is an open-source platform for monitoring and observability. The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability. The plugin did not properly sanitize error messages, making it potentially expose the Google...
Information disclosure
Grafana is an open-source platform for monitoring and observability. The Google Sheets data source plugin for Grafana, versions 0.9.0 to 1.2.2 are vulnerable to an information disclosure vulnerability. The plugin did not properly sanitize error messages, making it potentially expose the Google...
CVE-2023-4457
CVE-2023-4457 affects Grafana’s Google Sheets data source plugin (versions 0.9.0–1.2.2). The root cause is improper sanitization of error messages, which could expose the Google Sheet API key configured for the data source. This information disclosure vulnerability could reveal sensitive credenti...
PT-2023-8916 · Grafana +1 · Grafana Google Sheets Data Source Plugin +1
Name of the Vulnerable Software and Affected Versions: Grafana Google Sheets data source plugin versions 0.9.0 through 1.2.1 Description: The Google Sheets data source plugin for Grafana is vulnerable to an information disclosure issue due to improper sanitization of error messages. This could...
Fedora 38 : cacti / cacti-spine (2023-6335ea9c0c)
The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-6335ea9c0c advisory. Update cacti and cacti-spine to version 1.2.25. This includes the upstream fixes for many CVEs...
CVE-2023-44233
creationtimestamp| type| source ---|---|--- 2023-10-06 20:13:41+00:00| seen| https://t.me/cibsecurity/71741...
CVE-2023-24855
creationtimestamp| type| source ---|---|--- 2023-10-03 12:41:22+00:00| seen| https://t.me/cibsecurity/71480 2023-10-04 13:13:09+00:00| seen| https://t.me/truesecator/4924...
CVE-2023-5129
creationtimestamp| type| source ---|---|--- 2023-09-26 00:34:41+00:00| seen| https://t.me/cibsecurity/71025 2023-09-26 17:10:45+00:00| exploited| https://t.me/BleepingComputer/18310 2023-09-26 17:23:29+00:00| exploited| https://t.me/BleepingComputer/18314 2023-09-27 07:26:11+00:00| exploited|...
Reporting: "Error retrieving data source. Return code=257. Error message=Operation not permitted."
The message "Error retrieving data source. Return code = 257. Error message = Operation not permitted" is displayed when clicking Reporting on NetScaler:...
spider-flow code issue vulnerability
spider-flow is a crawler platform open source by sssssssss-team. Spider-flow 0.5.0 previous version of a code problem vulnerability , the vulnerability stems from the component API file src/main/java/org/spiderflow/controller/DataSourceController.java in the DriverManager. There is an unknown...
RESTEasy: creation of insecure temp files
In RESTEasy the insecure File.createTempFile is used in the DataSourceProvider, FileProvider and Mime4JWorkaround classes which creates temp files with insecure permissions that could be read by a local user...
The vulnerability of the Apache Maven framework, which allows a malicious actor to gain unauthorized access to protected information remotely.
The vulnerability of the Apache Maven framework is related to deficiencies in the mechanism for verifying data sources. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...
CVE-2023-39516
Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability which allows an authenticated user to poison data stored in the cacti's database. These data will be viewed by administrative cacti...
Cross site scripting
Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability which allows an authenticated user to poison data stored in the cacti's database. These data will be viewed by administrative cacti...
CVE-2023-39514
Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability which allows an authenticated user to poison data stored in the cacti's database. These data will be viewed by administrative cacti...
CVE-2023-39515
Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability allows an authenticated user to poison data stored in the cacti's database. These data will be viewed by administrative cacti accounts an...
UBUNTU-CVE-2023-39514
Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a Stored Cross-Site-Scripting XSS Vulnerability which allows an authenticated user to poison data stored in the cacti's database. These data will be viewed by administrative cacti...