GHSA-hhhx-wxgr-pj4rMediumCVSS 6.8

A user with Editor permissions can craft a dashboard whose table (TableNG) panel contains a...

Published
July 10, 2026
Last Modified
July 10, 2026

🔗 CVE IDs covered (1)

📋 Description

A user with Editor permissions can craft a dashboard whose table (TableNG) panel contains a malicious field name that executes as a script in the browser of any user who views the dashboard (stored cross-site scripting).

🔗 References (1)