Lucene search
K

4 matches found

EUVD
EUVD
added 2026/05/13 8:50 p.m.19 views

EUVD-2026-30168

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, a SQL injection vulnerability existed in the handling of user-controlled ordering parameters in the event and shadow attribute listing endpoints. The affected code accepted order or sort values from request paramete...

9.3CVSS5.9AI score0.0054EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 8:50 p.m.25 views

CVE-2026-44381

MISP (open source threat intelligence platform) prior to version 2.5.37 contains a SQL injection vulnerability in handling of user-controlled ordering parameters on the event and shadow attribute listing endpoints. The affected code accepts order/sort values from request parameters and injects th...

9.3CVSS5.9AI score0.0054EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/13 8:50 p.m.48 views

CVE-2026-44381 MISP: SQL injection via unvalidated ordering parameters in event and shadow attribute listings

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, a SQL injection vulnerability existed in the handling of user-controlled ordering parameters in the event and shadow attribute listing endpoints. The affected code accepted order or sort values from request paramete...

9.3CVSS0.0054EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2017/07/03 2:33 a.m.7 views

networkingforprofessionals.com XSS vulnerability

Vulnerable URL: http://www.networkingforprofessionals.com/eventlistings.php?invite=1"...

6.9AI score
Exploits0
Rows per page
Query Builder