Description
Grafana 5.3.1 has XSS via a column style on the "Dashboard > Table Panel" screen. NOTE: this issue exists because of an incomplete fix for CVE-2018-12099.
Remediation
References
Related Vulnerabilities
OpenSSL Resource Management Errors Vulnerability (CVE-2009-1378)
MySQL CVE-2018-2590 Vulnerability (CVE-2018-2590)
Oracle Database Server CVE-2011-0852 Vulnerability (CVE-2011-0852)
WordPress Plugin Re-attacher by BestWebSoft Cross-Site Scripting (1.0.8)
WordPress Plugin Collapse-O-Matic Cross-Site Scripting (1.8.2)