Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-5513

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2023-32275

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00314EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2023-32276

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00314EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2023-28090

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:37 a.m.3 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6.1CVSS5.8AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:37 a.m.3 views

CVE-2023-28607

js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip...

6.1CVSS5.8AI score0.00314EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:20 a.m.2 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.1CVSS6.4AI score0.00234EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 1:15 a.m.2 views

CVE-2022-29531

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

5.4CVSS5.8AI score0.0036EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:26 a.m.3 views

CVE-2019-14286

In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnerability exists in the event-graph view when a user toggles the event graph view. A malicious MISP event must be crafted in order to trigger the vulnerability...

6.1CVSS5.7AI score0.0024EPSS
Exploits0References1
NVD
NVDadded 2023/03/18 6:15 p.m.8 views

CVE-2023-28607

js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip...

6.1CVSS6AI score0.00314EPSS
Exploits0References2
NVD
NVDadded 2023/03/18 6:15 p.m.9 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6.1CVSS6AI score0.00314EPSS
Exploits0References2
Prion
Prionadded 2023/03/18 6:15 p.m.8 views

Design/Logic Flaw

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

5.8CVSS5.9AI score0.00314EPSS
Exploits0References2Affected Software1
CVE
CVEadded 2023/03/18 12:0 a.m.48 views

CVE-2023-28606

The CVE-2023-28606 issue affects MISP and stems from the js/event-graph.js component, where tooltips in the event-graph node UI can be exploited to perform XSS. Affected versions are MISP before 2.4.169; remediation is to upgrade to version 2.4.169 or later. The connected sources confirm the vuln...

6.1CVSS5.9AI score0.00314EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2023/03/18 12:0 a.m.2 views

PT-2023-21842 · Misp · Misp

Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.169 Description: The issue allows for XSS via event-graph node tooltips in the js/event-graph.js file. Recommendations: For versions prior to 2.4.169, update to version 2.4.169 or later to resolve the issue...

6.1CVSS5.8AI score0.00314EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2023/03/18 12:0 a.m.6 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6AI score0.00314EPSS
Exploits0References2
CVE
CVEadded 2023/03/18 12:0 a.m.52 views

CVE-2023-28607

CVE-2023-28607 affects the MISP project. The issue is a cross-site scripting (XSS) vulnerability in the JavaScript file js/event-graph.js (in MISP) that is exploitable via the event-graph relationship tooltip. Affected versions are MISP prior to 2.4.169; upgrading to 2.4.169 or later is recommend...

6.1CVSS5.9AI score0.00314EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/03/18 12:0 a.m.9 views

CVE-2023-28607

js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip...

6AI score0.00314EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/03/18 12:0 a.m.17 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6.1AI score0.00314EPSS
Exploits0References2
OSV
OSVadded 2023/01/20 10:15 p.m.8 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.1CVSS6.1AI score
Exploits0References1
NVD
NVDadded 2023/01/20 10:15 p.m.9 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.1CVSS6.1AI score0.00234EPSS
Exploits0References1
Rows per page
Query Builder