The vulnerability of the Grafana monitoring and observation platform lies in the improper handling of input during the creation of a web page. This allows a hacker to inject the entered URL address into the system.
The vulnerability of the Grafana monitoring and observation platform lies in the creation of snapshots and the arbitrary selection of the “originalUrl” parameter, thereby modifying the query through web proxies. Exploiting this vulnerability allows a malicious actor to inject the entered URL...