github.com/grafana/grafana vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2022-31123Highgithub.com/grafana/grafana: Grafana Plugin signature bypassCVE-2022-31107Highgithub.com/grafana/grafana: Grafana account takeover via OAuth vulnerabilityCVE-2022-21713Mediumgithub.com/grafana/grafana: Grafana API IDORCVE-2022-31097Mediumgithub.com/grafana/grafana: Grafana Stored Cross-site Scripting in Unified AlertingCVE-2022-21702Mediumgithub.com/grafana/grafana: Grafana proxy Cross-site ScriptingCVE-2022-21673Lowgithub.com/grafana/grafana: Grafana Forward OAuth Identity Token can allow users to access some data sourcesCVE-2021-43815Mediumgithub.com/grafana/grafana: Grafana directory traversal for .cvs filesCVE-2021-41244Criticalgithub.com/grafana/grafana: Grafana Fine-grained access control vulnerabilityCVE-2024-1313Highgithub.com/grafana/grafana: Grafana: Users outside an organization can delete a snapshot with its keyCVE-2024-1442Highgithub.com/grafana/grafana: Grafana's users with permissions to create a data source can CRUD all data sourcesCVE-2023-6152Mediumgithub.com/grafana/grafana: Email Validation Bypass And Preventing Sign Up From Email's OwnerCVE-2021-43798Highgithub.com/grafana/grafana: Grafana path traversalCVE-2018-12099Mediumgithub.com/grafana/grafana: Grafana Cross-site Scripting (XSS)CVE-2019-19499Mediumgithub.com/grafana/grafana: Grafana Arbitrary File ReadCVE-2018-18625Mediumgithub.com/grafana/grafana: Grafana XSS via adding a link in General featureCVE-2018-18623Mediumgithub.com/grafana/grafana: Grafana XSS in Dashboard Text PanelCVE-2023-4822Mediumgithub.com/grafana/grafana: Grafana privilege escalation vulnerabilityCVE-2023-3128Criticalgithub.com/grafana/grafana: Grafana vulnerable to Authentication Bypass by SpoofingCVE-2023-2183Mediumgithub.com/grafana/grafana: Grafana has Broken Access Control in Alert manager: Viewer can send test alertsCVE-2023-2801Highgithub.com/grafana/grafana: Grafana Missing Synchronization vulnerabilityCVE-2023-1410Mediumgithub.com/grafana/grafana: Grafana Stored Cross-site Scripting in Graphite FunctionDescription tooltipCVE-2023-22462Mediumgithub.com/grafana/grafana: Grafana vulnerable to Stored Cross-site Scripting in Text pluginCVE-2023-0507Mediumgithub.com/grafana/grafana: Grafana vulnerable to Cross-site ScriptingCVE-2023-0594Mediumgithub.com/grafana/grafana: Grafana vulnerable to Cross-site ScriptingCVE-2020-24303Mediumgithub.com/grafana/grafana: Grafana XSS via a query alias for the ElasticSearch datasource

Stop the waste.
Protect your environment with Kodem.