Exploit for #VU41684 Stored cross-site scripting in Grafana

Cybersecurity Help s.r.o.

Published: 2022-09-03 | Updated: 2024-01-07

Vulnerability identifier: #VU41684

Vulnerability risk: Low

CVSSv4.0: 2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:P/U:Clear]

CVE-ID: CVE-2020-11110

CWE-ID: CWE-79

Exploitation vector: Network

Exploits in database: 2

January 7, 2024
- CVE-2020-11110-Proof-of-Concept (Proof of concept for CVE-2020-11110, for educational purpose only) [Github]
September 3, 2022
- Grafana-CVE (a Curated list of Grafana Security Vulnerabilities, CVE & exploit) [Github]

Vulnerable software:
Grafana
Web applications / Other software

Vendor: Grafana Labs