6 matches found
CVE-2024-29859
In MISP before 2.4.187, addmispexport in app/Controller/EventsController.php does not properly check for a valid file upload...
CVE-2024-29858
In MISP before 2.4.187, uploadLogo in app/Controller/OrganisationsController.php does not properly check for a valid logo upload...
CVE-2024-29859
In MISP before 2.4.187, addmispexport in app/Controller/EventsController.php does not properly check for a valid file upload...
PT-2024-23087 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.187 Description: The issue arises from the add misp export function in app/Controller/EventsController.php not properly checking for a valid file upload. This could potentially lead to security weaknesses...
PT-2024-23086 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.187 Description: The issue concerns a weak security check in the uploadLogo function within the OrganisationsController.php file. This function does not properly validate logo uploads. Recommendations: For versions...
CVE-2024-29858
In MISP before 2.4.187, uploadLogo in app/Controller/OrganisationsController.php does not properly check for a valid logo upload...