Looking for the vulnerability index of Invicti's legacy products?
Grafana Improper Access Control Vulnerability (CVE-2026-28378) - Vulnerability Database

Grafana Improper Access Control Vulnerability (CVE-2026-28378)

Description

The public dashboard deletion endpoint does not enforce organization isolation, allowing an Org Admin in one organization to delete public dashboards belonging to a different organization by supplying the target dashboard's identifiers.

References

Related Vulnerabilities