2 matches found
CVE-2015-5719
app/Controller/TemplatesController.php in Malware Information Sharing Platform MISP before 2.3.92 does not properly restrict filenames under the tmp/files/ directory, which has unspecified impact and attack vectors...
CVE-2015-5719
CVE-2015-5719 affects Malware Information Sharing Platform (MISP) before 2.3.92. The issue is in app/Controller/TemplatesController.php where filenames under tmp/files/ are not properly restricted. CNVD-2016-07269 notes this allows a local attacker to perform a symbolic link attack to overwrite a...