CVE-2020-15412
The CVE-2020-15412 issue affects MISP 2.4.128 where app/Controller/EventsController.php lacks an event ACL check before allowing a user to submit an event contact form. This is reported across multiple sources (NVD entry and RH/CVE detail) and framed as an ACL authorization flaw in the event subm...