Format String Error

abhimanyumanocha · September 11, 2020, 7:25am

I have run Zap scanning tool on my Grafana Project. we are using grafana 6.7.3 version.
Zap has reported Format String Error alert of medium severity. Below is detail of Alert -

Medium (Medium)	Format String Error
Description	A Format String error occurs when the submitted data of an input string is evaluated as a command by the application.

URL	http://<IpAddress>/api/admin/users
Method	POST
Parameter	password
Attack	ZAP%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s%n%s

Could you please let me know the resolution for the same.

Regards,
Abhimanyu

Topic		Replies	Views
Grafana message formatting error Alerting alerting , alert-notifications	1	683	November 18, 2022
Value Formats error	3	928	February 21, 2018
Information Disclosure - Suspicious Comments Grafana	6	2017	April 23, 2021
SQL Injection : Zap report Grafana	6	1163	August 27, 2021
Grafana Alert value formatting Alerting panel , format	6	2789	January 24, 2025

Format String Error

Related topics