logo

Database

Reflected cross-site scripting (XSS) In @grafana/data

Description

cross-site scripting

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem
Package
Affected version
Patched versions

Aliases

1. CVE-2021-411742. NVD-2021-411743. OSV-2021-411744. GHSA-3j9m-hcv9-rpj85. GCVE-2021-41174

References

1. https://github.com/grafana/grafana/security/advisories/GHSA-3j9m-hcv9-rpj82. https://github.com/grafana/grafana/commit/31b78d51c693d828720a5b285107a50e6024c9123. https://github.com/grafana/grafana/commit/3cb5214fa45eb5a571fd70d6c6edf0d729983f824. https://github.com/grafana/grafana/commit/fb85ed691290d211a5baa44d9a641ab137f0de885. https://security.netapp.com/advisory/ntap-20211125-00036. https://vulncheck.com/cve/CVE-2021-411747. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-41174.yaml

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.