Description
Grafana 5.3.1 has XSS via the "Dashboard > Text Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
Remediation
References
Related Vulnerabilities
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-7060)
WordPress Plugin WP Support Plus Responsive Ticket System Cross-Site Scripting (9.1.1)
TYPO3 Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-36104)