Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:7864
HistoryNov 21, 2018 - 2:54 a.m.

Cross-site Scripting (XSS)

2018-11-2102:54:40
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
3

0 Low

EPSS

Percentile

0.0%

github.com/grafana/grafana is vulnerable to a cross-site scripting (XSS) attack. The library does not properly sanitize the prefix and postfix fields in the singlestat module, allowing a malicious user to inject and execute arbitrary Javascript.

0 Low

EPSS

Percentile

0.0%

Related for VERACODE:7864