PT-2025-48316

Name of the Vulnerable Software and Affected Versions MISP versions prior to 2.5.24 Description The software contains flawed logic when validating uploaded files, specifically concerning the tmp name parameter. This issue resides in the app/Controller/EventsController.php file. Recommendations...

Dahan-pass version of the jcms arbitrary file upload vulnerability-vulnerability warning-the black bar safety net

Brief description: Dahan-pass version of the jcms arbitrary file upload vulnerability Detailed description: The problem is in the import the xml file, just using a local js validation, no server-side validation, and access to the file without any control, the server also not upload the file...