vulnerability

Red Hat: CVE-2020-24303: XSS via a query alias for the Elasticsearch and Testdata datasource (Multiple Advisories)

Try Surface Command
Back to search
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Oct 28, 2020
Added
May 21, 2021
Modified
Aug 11, 2025

Description

Grafana before 7.1.0-beta 1 allows XSS via a query alias for the ElasticSearch datasource.

Solutions

redhat-upgrade-grafanaredhat-upgrade-grafana-debuginfo

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today