Description<!---->A flaw was found in Grafana. This flaw allows an malicious user to host a Graphite instance with modified Function Descriptions containing XSS payloads. When the victim uses it in a query and accidentally hovers over the Function Description, an attacker-controlled XSS payload will be executed.A flaw was found in Grafana. This flaw allows an malicious user to host a Graphite instance with modified Function Descriptions containing XSS payloads. When the victim uses it in a query and accidentally hovers over the Function Description, an attacker-controlled XSS payload will be executed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
grafana grafana |