mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-01 03:27:51 +02:00
0xMarcio
976 B
976 B
CVE-2017-8440
&color=brightgreen)
Description
Starting in version 5.3.0, Kibana had a cross-site scripting (XSS) vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users.
POC
Reference
- https://www.elastic.co/blog/kibana-5-4-1-and-5-3-3-released
- https://www.elastic.co/community/security
Github
No PoCs found on GitHub currently.