CVE-2018-12099

Published: Jun 11, 2018
Updated: May 4, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2018-12099" target="_blank" rel="noopener"> CVE-2018-12099
GHSA: <a href="https://github.com/advisories/GHSA-v5gq-qvjq-8p53" target="_blank" rel="noopener"> GHSA-v5gq-qvjq-8p53
Severity: Medium
Exploit:

Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
grafana / grafana	-	5.1.3.x
github.com/grafana/grafana	-	5.2.0-beta1