Two significant Grafana vulnerabilities that could allow attackers to redirect users to malicious websites and execute arbitrary JavaScript code. The vulnerabilities, identified as CVE-2025-6023 and CVE-2025-6197, affect multiple versions of Grafana, including 12.0.x, 11.6.x, 11.5.x, 11.4.x, and 11.3.x branches. Both security flaws were discovered through Grafana’s bug bounty program, with researchers Hoa X. Nguyen from […]
The post Grafana Vulnerabilities Allow User Redirection to Malicious Sites and Code Execution in Dashboards appeared first on Cyber Security News.
This article has been indexed from Cyber Security News