Grafana: >> Piechart-Panel >> 1.1.1 Security Vulnerabilities
legend.ts in the piechart-panel (aka Pie Chart Panel) plugin before 1.5.0 for Grafana allows XSS via the Values Header (aka legend header) option.
CVSS Score
5.4
EPSS Score
0.002
Published
2020-05-24
The Pie Chart Panel plugin through 2019-01-02 for Grafana is vulnerable to XSS via legend data or tooltip data. When a chart is included in a Grafana dashboard, this vulnerability could allow an attacker to gain remote unauthenticated access to the dashboard.
CVSS Score
6.1
EPSS Score
0.006
Published
2019-02-06