CVE-2023-40224

MISP 2.4.174 allows XSS in app/View/Events/index.ctp...

EUVD-2023-44821

Malicious code in bioql PyPI...

CVE-2023-41098

An issue was discovered in MISP 2.4.174. In app/Controller/DashboardsController.php, a reflected XSS issue exists via the id parameter upon a dashboard edit...

CVE-2023-41098

The CVE-2023-41098 entry concerns MISP version 2.4.174, with a reflected XSS vulnerability in app/Controller/DashboardsController.php via the id parameter when editing a dashboard. Affected software: MISP 2.4.174; vulnerable component: DashboardsController.php (id parameter). Underlying issue: re...

MISP 跨站脚本漏洞

MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP version 2.4.174, which stems from the presence of...

CVE-2023-40224

MISP 2.4.174 allows XSS in app/View/Events/index.ctp...

Design/Logic Flaw

MISP 2.4.174 allows XSS in app/View/Events/index.ctp...

CVE-2023-40224

MISP 2.4.174 allows XSS in app/View/Events/index.ctp...

CVE-2023-40224

MISP 2.4.174 allows XSS in app/View/Events/index.ctp...

CVE-2023-40224

CVE-2023-40224 affects MISP version 2.4.174, with a cross-site scripting vulnerability in app/View/Events/index.ctp. The available connected sources consistently describe an XSS issue due to insufficient input filtering/escaping, enabling arbitrary script execution via crafted payloads in the aff...