Grafana Full read SSRF and Account Takeover: CVE-2025-4123
... This might not seem dangerous on its own, but this type of bug was the starting point for uncovering two separate vulnerabilities: a Full Read SSRF and an account...
... This might not seem dangerous on its own, but this type of bug was the starting point for uncovering two separate vulnerabilities: a Full Read SSRF and an account...
I’m excited to explain my process and methodology for finding my first CVE vulnerability (CVE-2025–26529) in an open source project! ...