FLAT-ILLTP (CVE-2026-27877)
Unauthorized access to screen In github.com/grafana/grafana
6.5
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-VF53C (CVE-2026-21724)
Improper authorization control for web services In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-LXUHB (CVE-2025-41117)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
5.8
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-HTN0L (CVE-2025-41115)
Privilege escalation In github.com/grafana/grafana
8.1
High
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-P3F0I (CVE-2025-8341)
Server-side request forgery (SSRF) In github.com/grafana/grafana-infinity-datasource
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana-infinity-datasource
FLAT-NDXX5 (CVE-2025-6023)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
5.1
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-7B5XF (CVE-2025-3415)
Unauthorized access to screen In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-IQ0XI (CVE-2025-1088)
Lack of data validation In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-B3JK1 (CVE-2025-3260)
Authentication mechanism absence or evasion In github.com/grafana/grafana
6.2
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-LF09E (CVE-2025-4123)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
5.1
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-WW0M8 (CVE-2024-11741)
Unauthorized access to screen In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-0P8SD (CVE-2024-10452)
Restricted fields manipulation In github.com/grafana/grafana
0.5
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-M0X0A (CVE-2024-9264)
Server side template injection In github.com/grafana/grafana
7.7
High
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-5RLA1 (CVE-2024-8986)
Weak credential policy In github.com/grafana/grafana-plugin-sdk-go
6.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana-plugin-sdk-go
FLAT-3RCZZ (CVE-2024-6322)
Privilege escalation In github.com/grafana/grafana
2.1
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-UJDCJ (CVE-2022-36062)
Excessive privileges In github.com/grafana/grafana
5.1
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-OM2DF (CVE-2022-39201)
Business information leak In github.com/grafana/grafana
5.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-MCA6K (CVE-2022-39229)
Improper authorization control for web services In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-21YVH (CVE-2022-39306)
Lack of data validation In github.com/grafana/grafana
4.1
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-XHGEM (CVE-2022-39307)
Unauthorized access to screen In github.com/grafana/grafana
4.2
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-QKP0E (CVE-2022-39324)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-OQBIM (CVE-2022-39328)
Race condition In github.com/grafana/grafana
8.1
High
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-CACX2 (CVE-2022-35957)
Spoofing In github.com/grafana/grafana
4.8
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-NMLOM (CVE-2022-31130)
Business information leak In github.com/grafana/grafana
4.6
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-16BRK (CVE-2022-31123)
Insecure digital certificates In github.com/grafana/grafana
5.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-5M9ZE (CVE-2022-31107)
Authentication mechanism absence or evasion In github.com/grafana/grafana
5.0
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-0KMCY (CVE-2022-21713)
Improper authorization control for web services In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-7LB6I (CVE-2022-31097)
Server side cross-site scripting In github.com/grafana/grafana
2.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-I0EPZ (CVE-2022-21702)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
5.6
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-5E5GU (CVE-2024-1313)
Improper authorization control for web services In github.com/grafana/grafana
4.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-RL5P9 (GHSA-mh7p-8m2f-qrm6)
Improper authorization control for web services In github.com/grafana/grafana
0.0
None
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-B56NL (CVE-2024-1442)
Excessive privileges In github.com/grafana/grafana
4.8
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-L91P3 (CVE-2023-6152)
Authentication mechanism absence or evasion In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-7QUOJ (CVE-2022-21703)
Cross-site request forgery In github.com/grafana/grafana/pkg/web
6.2
Medium
Ecosystem: Go
Package: github.com/grafana/grafana/pkg/web
FLAT-R2KMB (CVE-2018-12099)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-RW9P1 (CVE-2019-19499)
Unauthorized access to screen In github.com/grafana/grafana
4.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-IGL7S (CVE-2018-18625)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-9XL88 (CVE-2018-18623)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-70DLT (CVE-2023-4822)
Excessive privileges In github.com/grafana/grafana
6.1
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-403WT (CVE-2023-3128)
Spoofing In github.com/grafana/grafana
8.0
High
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-NLUNC (CVE-2023-2183)
Improper authorization control for web services In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-3GVLD (CVE-2023-2801)
Race condition In github.com/grafana/grafana
6.6
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-65E4Q (GHSA-wm7r-3qxj-5xgq)
Improper authorization control for web services In github.com/grafana/grafana
0.0
None
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-PEZ2D (CVE-2023-1410)
Server side cross-site scripting In github.com/grafana/grafana
1.9
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-3DF03 (GHSA-3cgw-hfw7-wc7j)
Server side cross-site scripting In github.com/grafana/grafana
0.0
None
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-VPCCD (CVE-2023-0507)
Server side cross-site scripting In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-A4HS9 (CVE-2023-0594)
Server side cross-site scripting In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-L1K2M (CVE-2020-24303)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-F4B8Y (CVE-2020-11110)
Server side cross-site scripting In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-8Y5YJ (CVE-2018-18624)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-JSS3Y (CVE-2020-13430)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.2
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-CH9NQ (CVE-2020-12458)
Non-encrypted confidential information In github.com/grafana/grafana
4.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-6BIC0 (CVE-2020-12459)
Unauthorized access to screen In github.com/grafana/grafana
4.9
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-KY14M (CVE-2020-12245)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-GQSLJ (CVE-2019-13068)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.3
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-5RYPT (CVE-2018-1000816)
Reflected cross-site scripting (XSS) In github.com/grafana/grafana
1.1
Low
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-V6DD8 (CVE-2021-27358)
Asymmetric denial of service In github.com/grafana/grafana
6.6
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-PP7QT (CVE-2020-13379)
Server-side request forgery (SSRF) In github.com/grafana/grafana
6.7
Medium
Ecosystem: Go
Package: github.com/grafana/grafana
FLAT-EAVQX (CVE-2018-15727)
Authentication mechanism absence or evasion In github.com/grafana/grafana
8.1
High
Ecosystem: Go
Package: github.com/grafana/grafana