Vulnerability Database
Blog
FAQ
Docs
GO-2024-2483
See a problem?
Please try reporting it
to the source
first.
Source
https://pkg.go.dev/vuln/GO-2024-2483
Import Source
https://vuln.go.dev/ID/GO-2024-2483.json
JSON Data
https://api.osv.dev/v1/vulns/GO-2024-2483
Aliases
CVE-2018-18625
GHSA-6wh2-8hw7-jw94
Published
2024-06-28T15:28:53Z
Modified
2024-06-28T15:58:36.171374Z
Summary
Grafana XSS via adding a link in General feature in github.com/grafana/grafana
Details
Grafana XSS via adding a link in General feature in github.com/grafana/grafana
References
https://github.com/advisories/GHSA-6wh2-8hw7-jw94
https://nvd.nist.gov/vuln/detail/CVE-2018-18625
https://github.com/grafana/grafana/pull/11813
https://github.com/grafana/grafana/pull/14984
https://security.netapp.com/advisory/ntap-20200608-0008
Affected packages
Go
/
github.com/grafana/grafana
Package
Name
github.com/grafana/grafana
View open source insights on deps.dev
Purl
pkg:golang/github.com/grafana/grafana
Affected ranges
Type
SEMVER
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
6.0.0-beta1+incompatible
GO-2024-2483 - OSV