Lucene search
K

8 matches found

EUVD
EUVD
added 2026/05/18 8:43 a.m.12 views

EUVD-2026-30758

Mattermost Desktop App versions =6.1 6.0.1 5.4.13.0 fail to prevent server-rendered content from closing an underlying application view in the Mattermost Desktop App which allows a malicious server or plugin to crash the desktop client via invoking window.close in the renderer context, leading to...

3.5CVSS5.8AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.6 views

CVE-2020-10247

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

6.1CVSS6AI score0.00835EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/01/19 3:29 p.m.20 views

CVE-2021-25325

MISP 2.4.136 has XSS via galaxy cluster element values to app/View/GalaxyElements/ajax/index.ctp. Reference types could contain javascript: URLs...

6.1AI score0.00791EPSS
Exploits0References1
NVD
NVD
added 2020/03/09 7:15 p.m.12 views

CVE-2020-10247

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

6.1CVSS6AI score0.00835EPSS
Exploits0References2
OSV
OSV
added 2020/03/09 7:15 p.m.11 views

CVE-2020-10246

MISP 2.4.122 has reflected XSS via unsanitized URL parameters. This is related to app/View/Users/statisticsorgs.ctp...

6.1CVSS5.8AI score
Exploits0References2
Prion
Prion
added 2020/03/09 7:15 p.m.14 views

Design/Logic Flaw

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sightingfield.ctp...

4.3CVSS5.9AI score0.00835EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/09 6:32 p.m.16 views

CVE-2020-10246

MISP 2.4.122 has reflected XSS via unsanitized URL parameters. This is related to app/View/Users/statisticsorgs.ctp...

6AI score0.00835EPSS
Exploits0References2
CVE
CVE
added 2020/02/11 12:0 a.m.79 views

CVE-2020-8893

CVE-2020-8893 affects MISP prior to 2.4.121. The issue is in the Galaxy view (file: app/View/Galaxies/view.ctp) where a search string was not properly sanitized, enabling improper handling of input. Impact is described in the sources as a vulnerability in the Galaxy search functionality; explicit...

7.5CVSS7.5AI score0.02061EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder