XSS in Grafana piechart-panel (CVE-2015-9282)