Lucene search
K

31 matches found

OSV
OSV
added 2023/01/20 12:0 a.m.13 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload...

6.1CVSS6.1AI score0.00395EPSS
Exploits0References3
NVD
NVD
added 2022/04/20 11:15 p.m.19 views

CVE-2022-29531

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

5.4CVSS0.0081EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2022/04/20 11:15 p.m.3 views

CVE-2022-29531

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

5.4CVSS5.9AI score0.0081EPSS
Exploits1References5
Prion
Prion
added 2022/04/20 11:15 p.m.17 views

Cross site scripting

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

3.5CVSS5.1AI score0.0081EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2022/04/20 12:0 a.m.6 views

PT-2022-19681 · Misp · Misp

Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.158 Description: An issue was discovered in the event graph via a tag name, allowing stored XSS. Recommendations: For versions prior to 2.4.158, update to version 2.4.158 or later to resolve the issue. As a temporar...

5.4CVSS5.2AI score0.0081EPSS
Exploits1References9
Cvelist
Cvelist
added 2022/04/20 12:0 a.m.27 views

CVE-2022-29531

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

5.4AI score0.0081EPSS
Exploits1References4
OSV
OSV
added 2022/04/20 12:0 a.m.13 views

CVE-2022-29531

An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name...

5.4CVSS5.7AI score0.0081EPSS
Exploits1References6
NVD
NVD
added 2019/07/27 6:15 p.m.20 views

CVE-2019-14286

In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnerability exists in the event-graph view when a user toggles the event graph view. A malicious MISP event must be crafted in order to trigger the vulnerability...

6.1CVSS5.9AI score0.00809EPSS
Exploits0References1
OSV
OSV
added 2019/07/27 6:15 p.m.11 views

CVE-2019-14286

In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnerability exists in the event-graph view when a user toggles the event graph view. A malicious MISP event must be crafted in order to trigger the vulnerability...

6.1CVSS5.6AI score
Exploits0References1
Prion
Prion
added 2019/07/27 6:15 p.m.21 views

Cross site scripting

In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnerability exists in the event-graph view when a user toggles the event graph view. A malicious MISP event must be crafted in order to trigger the vulnerability...

4.3CVSS5.8AI score0.00809EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/07/27 5:2 p.m.50 views

CVE-2019-14286

The CVE-2019-14286 entry documents a stored cross-site scripting (XSS) vulnerability in MISP 2.4.111, located in app/webroot/js/event-graph.js for the event-graph view. An attacker must craft a malicious MISP event to trigger the vulnerability when the event-graph view is toggled. The available c...

6.1CVSS5.8AI score0.00809EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder