CVE-2023-48658
The CVE-2023-48658 entry affects MISP prior to 2.4.176. The vulnerability lies in app/Model/AppModel.php, which lacks a checkParam function for allowed characters (alphanumerics, underscore, dash, period, space). This could allow improper input handling leading to a CRITICAL impact (per CVSS 3.1:...