kibana vulnerabilities

Kibana is an open source (Apache Licensed), browser based analytics and search dashboard for Elasticsearch. Kibana is a snap to setup and start using. Kibana strives to be easy to get started with, while also being flexible and powerful, just like Elastic

Latest version 5.1.1
First published 2 years ago
Latest version published 2 years ago

Licenses detected

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the kibana package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • M
Information Exposure
>=5.0.0 <5.0.2 Not available 05 Jul, 2019
  • M
Cross-site Request Forgery (CSRF)
<4.1.3,>=4.2.0 <4.2.1 Not available 05 Jul, 2019
  • M
Cross-site Scripting (XSS)
>=4.1.0 <4.1.11,>=4.5.0 <4.5.4 Not available 04 Jul, 2019
  • M
Cross-site Scripting (XSS)
>=4.3.0 <4.6.2 Not available 03 Jul, 2019
  • M
Open Redirect
<4.6.2,>=5.0.0 <5.0.1 Not available 03 Jul, 2019
  • M
Arbitrary Command Execution
<5.3.13,>=6.4.0 <6.4.3 Not available 22 Nov, 2018
  • M
Cross-site Scripting (XSS)
>=5.1.1 <5.6.6 || >=6.0.0 <6.1.2 Not available 08 Apr, 2018
  • H
Denial of Service (DoS)
<5.2.1 Not available 08 Apr, 2018
  • M
Cross-site Scripting (XSS)
<5.4.1 Not available 08 Apr, 2018
  • M
Cross-site Scripting (XSS)
>=6.1.0 <6.1.3 Not available 01 Mar, 2018
  • M
Open Redirect
>=5.1.1 <5.6.7 || >=6.0.0 <6.1.3 Not available 01 Mar, 2018
  • M
Cross-site Scripting (XSS)
>=5.1.1 <5.6.7 || >=6.0.0 <6.1.3 Not available 01 Mar, 2018
  • M
Cross-site Scripting (XSS)
<5.6.5 || >=6 <6.0.1 Not available 22 Jan, 2018
  • M
Open Redirect
<5.6.5 || >=6 <6.0.1 Not available 22 Jan, 2018
  • M
Open Redirect
<5.3.1 Not available 22 Jan, 2018
  • H
Denial of Service (DoS)
<5.2.1 Not available 04 Jan, 2018
  • M
Cross-site Scripting (XSS)
>=5.3.0 <5.3.3 || >=5.4.0 <5.4.1 Not available 04 Jan, 2018
  • M
Information Exposure
<5.4.3 Not available 04 Jan, 2018
  • M
Cross-site Scripting (XSS)
<5.6.1 Not available 04 Jan, 2018
  • M
Cross-site Scripting (XSS)
<5.0.0-alpha5 Not available 25 Dec, 2017
Versions
Version Published Licenses Direct Vulnerabilities
kibana 5.1.1 Latest 06 Jun, 2017 Apache-2.0
  • 2 H
  • 10 M
  • 0 L