Filter
AND
Versions
9.0.0
8
8.0.0
5
9.3.0
5
8.1.0
4
7.0.0
3
7.4.0
3
9.4.0
3
9.5.0
3
10.0.0
2
10.1.0
2
3.0.1
2
6.0.0
2
8.4.0
2
8.4.3
2
8.5.0
2
9.1.0
2
9.2.0
2
2.0.0
1
3.0.0-beta1
1
3.0.0-beta2
1
3.0.0-beta3
1
3.0.0-beta4
1
3.0.0-beta5
1
3.0.0-beta6
1
3.0.0-beta7
1
5.0.0
1
5.0.0-beta1
1
5.0.0-beta2
1
5.0.0-beta3
1
5.0.0-beta4
1
5.0.0-beta5
1
5.0.1
1
5.3.0
1
6.7.3
1
7.0.1
1
7.2.0
1
7.4.1
1
8.0.0-beta1
1
8.0.0-beta2
1
8.0.0-beta3
1
8.0.1
1
8.2.0
1
8.3.0
1
8.3.0-beta1
1
8.3.0-beta2
1
8.3.1
1
Grafana Labs Grafana OSS and EnterpriseCross Site Request Forgery in Grafana
8.8
First published (updated )
Grafana Labs Grafana OSS and EnterpriseFGAC API Key privilege escalation in Grafana
8.8
First published (updated )
Grafana Labs Grafana OSS and EnterpriseWhen query caching is enabled in Grafana users can query another users session
8.8
First published (updated )
redhat/GrafanaStored XSS in Grafana's Unified Alerting
8.7
First published (updated )
Grafana Labs Grafana OSS and EnterpriseGrafana Enterprise datasource network restrictions bypass via HTTP redirects
8.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/grafana/grafanaGrafana contains Improper Input Validation
8.1
First published (updated )
go/github.com/grafana/grafanaGrafana plugin signature bypass vulnerability
7.8
First published (updated )
go/github.com/grafana/grafanaGrafana folders admin only permission privilege escalation
7.6
First published (updated )
redhat/grafanaThe snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/grafanaGrafana account takeover via OAuth vulnerability
7.5
First published (updated )
Grafana Labs Grafana OSS and EnterpriseOne of the usage insights HTTP API endpoints in Grafana Enterprise 6.x before 6.7.6, 7.x before 7.3.…
7.5
First published (updated )
Grafana Labs Grafana OSS and EnterpriseGrafana path traversal
7.5
First published (updated )
Grafana Labs Grafana OSS and EnterpriseIn Grafana 2.x through 6.x before 6.3.4, parts of the HTTP API allow unauthenticated use. This makes…
7.5
First published (updated )
Grafana Labs Grafana OSS and EnterpriseData source and plugin proxy endpoints could leak the authentication cookie to some destination plugins
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/grafana/grafanaGrafana data source and plugin proxy endpoints leaking authentication tokens to some destination plugins
7.5
First published (updated )
Grafana Labs Grafana OSS and EnterprisePath Traversal
7.5
First published (updated )
Grafana Labs Grafana OSS and EnterpriseGrafana 8.4.3 allows unauthenticated access via (for example) a /dashboard/snapshot/*?orgId=0 URI. N…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/GrafanaGrafana stored XSS in FileUploader component
7.3
First published (updated )
redhat/grafanaGrafana is an open-source platform for monitoring and observability. The vulnerability impacts insta…
7.2
First published (updated )
Grafana Labs Grafana OSS and EnterpriseGrafana is an open-source platform for monitoring and observability. In Grafana Enterprise, Reques…
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Grafana Labs Grafana OSS and EnterpriseGrafana Enterprise 7.2.x and 7.3.x before 7.3.10 and 7.4.x before 7.4.5 allows a dashboard editor to…
7.1
First published (updated )