Lucene search
+L

31 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-5513

Malware in sbrugna...

6.1CVSS6.3AI score0.00809EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-32275

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00382EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-32276

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00382EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-28090

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00395EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 3:37 a.m.6 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6.1CVSS5.8AI score0.00382EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 3:37 a.m.5 views

CVE-2023-28607

js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip...

6.1CVSS5.8AI score0.00382EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 3:20 a.m.5 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.1CVSS6.4AI score0.00395EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 1:15 a.m.6 views

CVE-2022-29531

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

5.4CVSS5.8AI score0.0081EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 8:26 a.m.6 views

CVE-2019-14286

In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnerability exists in the event-graph view when a user toggles the event graph view. A malicious MISP event must be crafted in order to trigger the vulnerability...

6.1CVSS5.7AI score0.00809EPSS
Exploits0References1
nvd
nvd
added 2023/03/18 6:15 p.m.21 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6.1CVSS6AI score0.00382EPSS
Exploits0References2
nvd
nvd
added 2023/03/18 6:15 p.m.11 views

CVE-2023-28607

js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip...

6.1CVSS6AI score0.00382EPSS
Exploits0References2
prion
prion
added 2023/03/18 6:15 p.m.13 views

Design/Logic Flaw

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

5.8CVSS5.9AI score0.00382EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2023/03/18 12:0 a.m.7 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6AI score0.00382EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2023/03/18 12:0 a.m.5 views

PT-2023-21842

Name of the Vulnerable Software and Affected Versions MISP versions prior to 2.4.169 Description The issue allows for XSS via event-graph node tooltips in the js/event-graph.js file. Recommendations For versions prior to 2.4.169, update to version 2.4.169 or later to resolve the issue...

6.1CVSS6.4AI score0.00382EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2023/03/18 12:0 a.m.10 views

CVE-2023-28607

js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip...

6AI score0.00382EPSS
Exploits0References2
cvelist
cvelist
added 2023/03/18 12:0 a.m.28 views

CVE-2023-28606

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips...

6.1AI score0.00382EPSS
Exploits0References2
cve
cve
added 2023/03/18 12:0 a.m.54 views

CVE-2023-28606

The CVE-2023-28606 issue affects MISP and stems from the js/event-graph.js component, where tooltips in the event-graph node UI can be exploited to perform XSS. Affected versions are MISP before 2.4.169; remediation is to upgrade to version 2.4.169 or later. The connected sources confirm the vuln...

6.1CVSS5.9AI score0.00382EPSS
Exploits0References2Affected Software1
cve
cve
added 2023/03/18 12:0 a.m.60 views

CVE-2023-28607

CVE-2023-28607 affects the MISP project. The issue is a cross-site scripting (XSS) vulnerability in the JavaScript file js/event-graph.js (in MISP) that is exploitable via the event-graph relationship tooltip. Affected versions are MISP prior to 2.4.169; upgrading to 2.4.169 or later is recommend...

6.1CVSS5.9AI score0.00382EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2023/01/20 10:15 p.m.29 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.1CVSS6.1AI score0.00395EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2023/01/20 12:0 a.m.7 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.3AI score0.00395EPSS
Exploits0References1
Rows per page
Query Builder