CVE-2018-12099
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in go/github.com/grafana/grafana
Identifiers
GHSA-v5gq-qvjq-8p53, CVE-2018-12099
Package Slug
go/github.com/grafana/grafana
Vulnerability
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Description
Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links.
Affected Versions
All versions before 5.2.0-beta1
Solution
Upgrade to version 5.2.0-beta1 or above. Note: 5.2.0-beta1 may be an unstable version. Use caution.
Last Modified
2024-02-01
| source |