VDB
BIT-grafana-2025-4123
BIT-grafana-2025-4123
PUBLISHED
CVSS 6.099999904632568 MEDIUM
A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path traversal and open redirect. This allows attackers to redirect users to a website that hosts a frontend plugin that will execute arbitrary JavaScript. This vulnerability does not require editor permissions and if anonymous access is enabled, the XSS will work. If the Grafana Image Renderer plugin is installed, it is possible to exploit the open redirect to achieve a full read SSRF. The default Content-Security-Policy (CSP) in Grafana will block the XSS though the `connect-src` directive.
Risk Scores
CVSS 3.1
6.099999904632568
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | grafana | 0, 11.0.0, 12.0.0 |
Exploit Intelligence
- CVE-2025-4123 (github-poc)
- Grafana CVE-2025-4123-POC (github-poc)
- punitdarji/Grafana-cve-2025-4123 (github-poc)
- CVE-2025-4123 - Grafana Tool (github-poc)
- imbas007/CVE-2025-4123-template (github-poc)
- CVE-2025-4123 (github-poc)
- Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSRF (github-poc)
- CVE-2025-4123.json (github-poc)
- resources.yml (github-poc)
- web_poc_map_v2.yaml (github-poc)
…and 4 more exploits
Timeline
- May 26, 2025 CVE Published
- Apr 30, 2026 CVE Updated
References
- https://grafana.com/security/security-advisories/cve-2025-4123/ url
- https://nvd.nist.gov/vuln/detail/CVE-2025-4123 url
- https://grafana.com/blog/2025/05/23/grafana-security-release-medium-and-high-severity-security-fixes-for-cve-2025-4123-and-cve-2025-3580/ url
- https://www.exploit-db.com/exploits/52491 url