CVE-2018-11562
CVE-2018-11562 affects MISP 2.4.91 via a vulnerability in the template file app/View/Elements/eventattribute.ctp that allows reflected XSS when a user clicks a malicious link in an event view and then uses the deleted attributes quick filter. Root cause: improper handling in that view leading to ...