2 matches found
CVE-2015-5720
Multiple cross-site scripting XSS vulnerabilities in the template-creation feature in Malware Information Sharing Platform MISP before 2.3.90 allow remote attackers to inject arbitrary web script or HTML via vectors involving 1 add.ctp, 2 edit.ctp, and 3 ajaxification.js...
CVE-2015-5720
Malware Information Sharing Platform (MISP) versions prior to 2.3.90 expose multiple cross-site scripting (XSS) vulnerabilities in the template-creation feature. Attack vectors involve add.ctp, edit.ctp, and ajaxification.js, enabling remote attackers to inject arbitrary web script or HTML. The p...