—
GO-2024-2661
Arbitrary file read in github.com/grafana/grafana
Details
An authenticated attacker that has privileges to modify the data source configurations can read arbitrary files.
Are you affected?
Enter the version of the package you're using.
Affected packages
Go / github.com/grafana/grafana
Introduced in:
0 No fixed version published yet for github.com/grafana/grafana (go modules). Pin to a known-safe version or switch to an alternative.