Looking for the vulnerability index of Invicti's legacy products?
Grafana Files or Directories Accessible to External Parties Vulnerability - CVE-2026-33380 - Vulnerability Database

Grafana Files or Directories Accessible to External Parties Vulnerability - CVE-2026-33380

Medium
Reference: CVE-2026-33380
Title: Grafana Files or Directories Accessible to External Parties Vulnerability
Overview:

A vulnerability in SQL Expressions allows an authenticated attacker to read arbitrary files from the Grafana server39s filesystem. Only instances with the sqlExpressions feature toggle enabled are vulnerable.