all InfoSec news
CVE-2023–1410 : Stored XSS in the Graphite Function Description tooltip
March 26, 2023, 10:35 a.m. | ASWIN K V
InfoSec Write-ups - Medium infosecwriteups.com
CVE-2023–1410 : Stored XSS in the Graphite Function Description tooltip
Hello everyone, Do you know about Graphite, a popular tool for monitoring metrics?
If that’s the case, you’re probably also familiar with the Function Description tooltip, which gives useful information about various functions that may be used to edit metrics data.
Nevertheless, you may be unaware that this seemingly harmless tooltip is actually a good target for a potentially deadly sort of online vulnerability known as stored cross-site scripting (XSS). …
bug bounty cve cve-2023-1410 cybersecurity function grafana graphite stored xss technology xss
More from infosecwriteups.com / InfoSec Write-ups - Medium
4 Ways Cybercrime Could Impact Your Loan Business
1 week, 2 days ago |
infosecwriteups.com
Story of Lock up users’ account by DOS attack cost $1,100
1 week, 5 days ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Azure Security Architect
@ First Quality | Remote US - Eastern or Central Timezone
Staff Security Researcher (Network Protocols)
@ Palo Alto Networks | Santa Clara, CA, United States
Senior Product Manager - Endpoint Security
@ Ivanti | Bengaluru, India
Penetration Tester
@ Lostar | İstanbul, Türkiye