Lucene search
Veracode Vulnerability DatabaseVERACODE:13410HistoryMar 06, 2019 - 6:17 a.m.
Cross-Site Scripting (XSS)
2019-03-0606:17:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
EPSS
0.002
Percentile
61.4%
github.com/grafana/grafana is vulnerable to cross-site scripting (XSS). A remote attacker is able to inject arbitrary Javascript through the content, url and name parameters under the Dashboard settings. This CVE ID is different from CVE-2018-18624 and CVE-2018-18625.
Related
veracode
veracode
Cross-Site Scripting (XSS)
2019-03-06 06:20:37
Cross-Site Scripting (XSS)
2019-03-06 06:20:33
openvas
openvas
Grafana <= 6.0.0 Multiple XSS Vulnerabilities
2022-12-28 00:00:00
Grafana < 6.0.0 XSS Vulnerability
2024-01-08 00:00:00
osv
osv
Grafana XSS in Dashboard Text Panel in github.com/grafana/grafana
2024-08-21 14:30:29
Grafana XSS via a column style in github.com/grafana/grafana
2024-06-28 15:28:53
ubuntucve
ubuntucve
nessus
nessus
RHEL 7 : grafana (RHSA-2019:0019)
2019-01-07 00:00:00
CentOS 8 : grafana (CESA-2020:4682)
2021-02-01 00:00:00
RHEL 8 : grafana (RHSA-2020:4682)
2020-11-04 00:00:00
nvd
nvd
redhat
redhat
(RHSA-2019:0019) Moderate: grafana security and bug fix update
2019-01-03 17:35:51
(RHSA-2020:4682) Moderate: grafana security, bug fix, and enhancement update
2020-11-03 12:26:41
redhatcve
redhatcve
github
github
Grafana XSS via a column style
2022-05-24 17:18:56
Grafana XSS via adding a link in General feature
2024-01-30 23:47:50
Grafana XSS in Dashboard Text Panel
2024-01-30 23:47:48
prion
prion
Design/Logic Flaw
2020-06-02 17:15:00
Default credentials
2020-06-02 17:15:00
Default credentials
2020-06-02 17:15:00
cvelist
cvelist
cve
cve
almalinux
almalinux
Moderate: grafana security, bug fix, and enhancement update
2020-11-03 12:26:41
oraclelinux
oraclelinux
grafana security, bug fix, and enhancement update
2020-11-10 00:00:00