mirror of
https://github.com/0xMarcio/cve.git
synced 2026-04-12 00:58:33 +02:00
976 B
976 B
CVE-2017-8440
&color=brightgreen)
Description
Starting in version 5.3.0, Kibana had a cross-site scripting (XSS) vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
POC
Reference
- https://www.elastic.co/blog/kibana-5-4-1-and-5-3-3-released
- https://www.elastic.co/community/security
Github
No PoCs found on GitHub currently.