0.001 Low
EPSS
Percentile
25.2%
app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent XSS via comments. It only impacts the users of the same instance because the comment field is not part of the MISP synchronisation.
www.securityfocus.com/bid/100533
github.com/MISP/MISP/commit/6eba658d4a648b41b357025d864c19a67412b8aa