CVE-2019-9834

MEDIUM

netdata < 1.13.0 - HTML Injection via Snapshot Import

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-9834. PoCs published by s4vitar.

AI-analyzed exploit summary This exploit demonstrates an HTML injection vulnerability in NetData v1.13.0, allowing attackers to inject malicious HTML code into a snapshot file. When imported, the injected code renders a fake login form to steal credentials via a GET request to an attacker-controlled server.

Description

The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to steal authentication credentials or to control how the site is rendered to the user. NOTE: the vendor disputes the risk because there is a clear warning next to the button for importing a snapshot

Exploits (1)

exploitdb WORKING POC
by s4vitar · textwebappsmultiple
https://www.exploit-db.com/exploits/46545

This exploit demonstrates an HTML injection vulnerability in NetData v1.13.0, allowing attackers to inject malicious HTML code into a snapshot file. When imported, the injected code renders a fake login form to steal credentials via a GET request to an attacker-controlled server.

Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: NetData <= v1.13.0
Auth required
Prerequisites: Access to export and import snapshot functionality in NetData · Victim interaction to import the malicious snapshot
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/46545
Exploit, Third Party Advisory x_refsource_misc
https://www.youtube.com/watch?v=zSG93yX0B8k

Scores

CVSS v3 6.1
EPSS 0.0510
EPSS Percentile 91.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (1)
netdata/netdata < 1.13.0
Published Mar 15, 2019
Tracked Since Feb 18, 2026