2 matches found
CVE-2020-11458
app/Model/feed.php in MISP before 2.4.124 allows administrators to choose arbitrary files that should be ingested by MISP. This does not cause a leak of the full contents of a file, but does cause a leaks of strings that match certain patterns. Among the data that can leak are passwords from...
CVE-2020-11458
CVE-2020-11458 affects MISP versions prior to 2.4.124, where app/Model/feed.php allows administrators to select arbitrary files to ingest. This does not expose full file contents but can leak strings matching patterns, including passwords from database.php or GPG passphrases from config.php. Rele...