Miggo Logo

CVE-2020-11110: Grafana stored XSS

5.4

CVSS Score
3.1

Basic Information

EPSS Score
0.98469%
Published
5/24/2022
Updated
8/7/2024
KEV Status
No
Technology
TechnologyGo

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Package NameEcosystemVulnerable VersionsFirst Patched Version
github.com/grafana/grafanago<= 6.7.16.7.2

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stemmed from dashboard snapshot originalUrl values being rendered without sanitization in href attributes. The commit fb114a7 specifically added sanitizeUrl() to the snapshotUrl usage in DashNav.tsx, indicating this was the vulnerable path. The lack of URL sanitization in the original code allowed execution of arbitrary JavaScript through crafted URLs.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*r***n* t*rou** *.*.* *llows stor** XSS.

Reasoning

T** vuln*r**ility st*mm** *rom **s**o*r* sn*ps*ot ori*in*lUrl v*lu*s **in* r*n**r** wit*out s*nitiz*tion in *r** *ttri*ut*s. T** *ommit ******* sp**i*i**lly ***** `s*nitiz*Url()` to t** `sn*ps*otUrl` us*** in `**s*N*v.tsx`, in*i**tin* t*is w*s t** vu