Description
Kibana before 4.5.4 and 4.1.11 are vulnerable to an XSS attack that would allow an attacker to execute arbitrary JavaScript in users' browsers.
Remediation
References
http://www.securityfocus.com/bid/99179
https://www.elastic.co/community/security
Related Vulnerabilities
CVE-2020-4051 Vulnerability in maven package org.webjars.bowergithub.dojo:dijit
CVE-2016-10594 Vulnerability in npm package ipip
CVE-2022-46907 Vulnerability in maven package org.apache.jspwiki:jspwiki-main
CVE-2016-10692 Vulnerability in npm package haxeshim
CVE-2016-10584 Vulnerability in npm package dalek-browser-chrome-canary