CVE-2026-9029 | Grafana OSS 12.4.0 Template String sanitizeTextPanelContent cross site scripting

Inserito da Angelo Barbosa | Giu 22, 2026 | CVE

A vulnerability has been found in Grafana OSS 12.4.0 and classified as problematic. The affected element is the function sanitizeTextPanelContent of the component Template String Handler. This manipulation causes cross site scripting.

This vulnerability is tracked as CVE-2026-9029. The attack is possible to be carried out remotely. No exploit exists.

CVE-2026-9029 | Grafana OSS 12.4.0 Template String sanitizeTextPanelContent cross site scripting

Post correlati

CVE-2024-0303 | Youke365 up to 1.5.3 Parameter caiji.php url server-side request forgery

CVE-2025-8615 | CubeWP Plugin up to 1.1.26 on WordPress Shortcode cubewp_shortcode_taxonomy cross site scripting

CVE-2024-25960 | Dell PowerScale OneFS up to 9.3.0.0/9.4.0.16/9.5.0.7/9.7.0.1 cleartext transmission (dsa-2024-115)

CVE-2024-23486 | Buffalo WSR-A2533DHP2 cleartext storage