Grafana Cross-Site-Scripting (XSS) via scripted dashboards
High
| Advisory ID: | CVE-2025-6023 |
| Published: | 2025-07-18 |
| Product: | Grafana |
| CVSS Score: | 7.6 |
| CVSS Vector: | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L |
| Fixed Versions: | >=12.0.2+security-01 >=11.6.3+security-01 >=11.5.6+security-01 >=11.4.6+security-01 >=11.3.8+security-01 |
Summary
An open redirect vulnerability has been identified in Grafana that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana v11.5.0. The open redirect can be chained with path traversal vulnerabilities to achieve XSS. Fixed in versions 12.0.2+security-01, 11.6.3+security-01, 11.5.6+security-01, 11.4.6+security-01 and 11.3.8+security-01
UPDATE: Thanks to dat2phit_opswat for reporting a bypass of this fix. Version 12.1.2 has a fix for this bypass.