Lucene search
+L

7 matches found

NVD
NVD
added 2026/07/10 4:16 p.m.9 views

CVE-2026-8595

A user with Editor permissions can craft a dashboard whose table TableNG panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard stored cross-site scripting...

6.8CVSS0.00239EPSS
Exploits0References1
OSV
OSV
added 2026/07/10 2:59 p.m.5 views

CVE-2026-8595 Stored XSS in the table panel (TableNG)

A user with Editor permissions can craft a dashboard whose table TableNG panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard stored cross-site scripting...

6.8CVSS6AI score0.00239EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/10 2:59 p.m.32 views

CVE-2026-8595 Stored XSS in the table panel (TableNG)

A user with Editor permissions can craft a dashboard whose table TableNG panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard stored cross-site scripting...

6.8CVSS0.00239EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/10 2:59 p.m.7 views

EUVD-2026-42922

A user with Editor permissions can craft a dashboard whose table TableNG panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard stored cross-site scripting...

6.8CVSS6AI score0.00239EPSS
Exploits0References1
CVE
CVE
added 2026/07/10 2:59 p.m.10 views

CVE-2026-8595

CVE-2026-8595 describes a stored XSS in Grafana's TableNG panel. An Editor can craft a dashboard with a malicious field name, causing script execution in the browser for any viewer of that dashboard. Affected component: the TableNG panel in dashboards. Root cause: stored cross-site scripting via ...

6.8CVSS6AI score0.00239EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/07/10 2:59 p.m.8 views

CVE-2026-8595 Stored XSS in the table panel (TableNG)

A user with Editor permissions can craft a dashboard whose table TableNG panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard stored cross-site scripting...

6.8CVSS6AI score0.00239EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/07/10 2:59 p.m.10 views

CVE-2026-8595

A user with Editor permissions can craft a dashboard whose table TableNG panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard stored cross-site scripting...

6.8CVSS6AI score0.00239EPSS
Exploits0
Rows per page
Query Builder