5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
25.2%
app/View/Helper/CommandHelper.php in MISP before 2.4.79 has persistent XSS via comments. It only impacts the users of the same instance because the comment field is not part of the MISP synchronisation.
www.securityfocus.com/bid/100533
github.com/MISP/MISP/commit/6eba658d4a648b41b357025d864c19a67412b8aa