2 matches found
CVE-2019-10254
In MISP before 2.4.105, the app/View/Layouts/default.ctp default layout template has a Reflected XSS vulnerability...
CVE-2019-10254
CVE-2019-10254 (MISP) : A Reflected XSS vulnerability exists in the default layout template (app/View/Layouts/default.ctp) of MISP prior to version 2.4.105. The issue arises in the default.ctp template and enables injection of arbitrary web script/HTML. Public references in the CVE describe the a...