Filter
AND
Versions
8.0.0
15
9.0.0
13
9.3.0
8
9.2.0
6
5.0.0
5
7.0.0
5
7.4.0
5
9.4.0
5
9.5.0
5
6.0.0
4
8.1.0
4
10.0.0
3
10.1.0
3
5.3.1
3
9.1.0
3
2.0.0
2
3.0.1
2
5.0.0-beta1
2
5.0.0-beta2
2
5.0.0-beta3
2
5.0.0-beta4
2
5.0.0-beta5
2
5.3.0
2
6.7.3
2
7.2.0
2
8.4.0
2
8.4.3
2
8.5.0
2
1.1.0
1
1.3.0
1
10.2.0
1
10.3.0
1
10.4.0
1
11.0.0
1
2.0.0-beta1
1
2.0.0-beta3
1
2.0.1
1
2.1.2
1
2.5.0
1
3.0.0
1
3.0.0-beta1
1
3.0.0-beta2
1
3.0.0-beta3
1
3.0.0-beta4
1
3.0.0-beta5
1
3.0.0-beta6
1
3.0.0-beta7
1
3.1.1
1
4.0.0
1
5.0.1
1
5.1.3
1
5.2.4
1
5.4.0
1
6.3.6
1
6.4.3
1
6.7.0
1
6.7.1
1
7.0.1
1
7.0.5
1
7.3.0
1
7.3.4
1
7.4.1
1
8.0.0-beta1
1
8.0.0-beta2
1
8.0.0-beta3
1
8.0.1
1
8.2.0
1
8.3.0
1
8.3.0-beta1
1
8.3.0-beta2
1
8.3.1
1
redhat/grafanaGrafana Authentication Bypass Vulnerability
First published (updated )
Grafana GrafanaGrafana is validating Azure AD accounts based on the email claim. On Azure AD, the profile email f…
9.8
First published (updated )
CVE-2023-4399Grafana is an open-source platform for monitoring and observability. In Grafana Enterprise, Reques…
7.2
First published (updated )
Grafana GrafanaGrafana is an open-source platform for monitoring and observability. The vulnerability impacts insta…
7.2
First published (updated )
Grafana GrafanaGrafana directory traversal for `.cvs` files
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Grafana GrafanaCross organization admin control in Grafana
9.1
First published (updated )
Grafana GrafanaXSS vulnerability allowing arbitrary JavaScript execution
6.9
First published (updated )
go/github.com/grafana/grafanaOrganization admins can delete pending invites created in an organization they are not part of.
2.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
go/github.com/grafana/grafanaGrafana SQL Expressions allow for remote code execution
10
EPSS
0.05%
First published (updated )
go/github.com/grafana/grafanaA user changing their email after signing up and verifying it can change it without verification in …
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/grafanaInfoleak, SQL Injection, Path Traversal
6.5
First published (updated )
Grafana GrafanaGrafana data source and plugin proxy endpoints leaking authentication tokens to some destination plugins
7.5
First published (updated )
Grafana GrafanaStored XSS in Grafana's Unified Alerting
8.7
First published (updated )
Grafana GrafanaGrafana vulnerable to race condition allowing privilege escalation
9.8
First published (updated )
redhat/grafanaAuthentication Bypass in Grafana via auth proxy allowing escalation from admin to server admin
6.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/grafanaGrafana users with email as a username can block other users from signing in
4.3
First published (updated )
Grafana GrafanaData source and plugin proxy endpoints could leak the authentication cookie to some destination plugins
7.5
First published (updated )
Grafana GrafanaGrafana plugin signature bypass vulnerability
7.8
First published (updated )
redhat/grafanaGrafana vulnerable to spoofing originalUrl of snapshots
6.7
First published (updated )
redhat/grafanaGrafana account takeover via OAuth vulnerability
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Grafana GrafanaGrafana contains Improper Input Validation
8.1
First published (updated )
Grafana GrafanaGrafana subject to Exposure of Sensitive Information resulting in User enumeration via forget password
6.7
First published (updated )
Grafana GrafanaGrafana folders admin only permission privilege escalation
7.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.