EUVD-2022-7329

Malicious code in bioql PyPI...

CVE-2019-19040

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"...

Reflected Cross site scripting (XSS) in kairosdb

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"' substring...

com.arpnetworking.kairosdb:kairosdb-histograms (>=1.0.0 <=2.1.4), io.inscopemetrics.kairosdb:kairosdb-extensions (>=2.1.7 <=2.2.0) potentially affected by CVE-2019-19040 via org.kairosdb:kairosdb (>=1.1.3-1 <=1.2.1-1)

org.kairosdb:kairosdb MAVEN version =1.1.3-1, =1.0.0, =2.1.7, =2.2.0 Source cves: CVE-2019-19040 Source advisory: OSV:GHSA-FJHH-67WV-7GR4...

GHSA-FJHH-67WV-7GR4 Reflected Cross site scripting (XSS) in kairosdb

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"' substring...

Cross-Site Scripting (XSS)

KairosDB is vulnerable to cross-site scripting XSS. The vulnerability exists as the value of message is not sanitized when it is displayed when an error has occurred...

KairosDB Cross-Site Scripting Vulnerability

KairosDB is a high-speed distributed scalable temporal database based on Cassandra. A cross-site scripting vulnerability exists in view.html in KairosDB 1.2.2 and earlier versions. The vulnerability stems from the showErrorMessage in js/graph.js, and can be exploited via view.html with the...

CVE-2019-19040

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"' substring...

CVE-2019-19040

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"' substring...

CVE-2019-19040

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"...

Cross site scripting

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"' substring...

CVE-2019-19040

KairosDB through 1.2.2 has XSS in view.html because of showErrorMessage in js/graph.js, as demonstrated by view.html?q= with a '"sampling":"value":"' substring...

CVE-2019-19040

KairosDB up to 1.2.2 contains an XSS in view.html via showErrorMessage in js/graph.js, demonstrated with a payload like '"sampling":{"value":"[removed]'". This CVE (CVE-2019-19040) is corroborated across multiple sources (NVD, Red Hat, GHSA/OSV, CNVD, CNVD CNVD, etc.). Exploitation status and con...

PT-2019-15766 · Kairosdb · Kairosdb

Name of the Vulnerable Software and Affected Versions: KairosDB versions prior to 1.2.3 Description: The issue concerns an XSS vulnerability in the view.html file due to the showErrorMessage function in js/graph.js. This can be exploited by including a specific substring, such as...