CSOonline

Flaws in a pair of Grafana plugins could hand over DevOps control

Users must configure updated settings in SQLite and Infinity plugins to defend against attackers gaining admin privileges on Grafana instances. Two now-patched critical flaws in Grafana’s plugin ...
Bleeping Computer

Grafana warns of max severity admin spoofing vulnerability

Grafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as administrators or for privilege escalation. The issue ...
Bleeping Computer

Over 46,000 Grafana instances exposed to account takeover bug

More than 46,000 internet-facing Grafana instances remain unpatched and exposed to a client-side open redirect vulnerability that allows executing a malicious plugin and account takeover. The flaw is ...
TechRepublic

How to Connect Grafana to a Remote MySQL Database

Grafana needs data to be useful. Phil Hajjar walks you through the process of using a MySQL database as a source for data visualization in Grafana. Grafana is one of the most widely-used interactive ...