CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

5 matches found

Cvelist•added 2018/05/18 6:0 p.m.•14 views

CVE-2018-11245

app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes...

6AI score0.0024EPSS

Exploits0References2

Positive Technologies•added 2018/05/18 12:0 a.m.•3 views

PT-2018-10423 · Misp · Misp

Name of the Vulnerable Software and Affected Versions: MISP version 2.4.91 Description: The issue is related to a DOM-based XSS in the app/webroot/js/misp.js file, specifically with cortex type attributes. Recommendations: For MISP version 2.4.91, update to a newer version that contains a fix for...

6.1CVSS6AI score0.0024EPSS

Exploits0References4

NVD•added 2017/11/13 4:29 p.m.•8 views

CVE-2017-16802

In the sharingGroupPopulateOrganisations function in app/webroot/js/misp.js in MISP 2.4.82, there is XSS via a crafted organisation name that is manually added...

5.4CVSS5.2AI score0.00191EPSS

Exploits0References1

Prion•added 2017/11/13 4:29 p.m.•11 views

Design/Logic Flaw

In the sharingGroupPopulateOrganisations function in app/webroot/js/misp.js in MISP 2.4.82, there is XSS via a crafted organisation name that is manually added...

3.5CVSS5.1AI score0.00191EPSS

Exploits0References1Affected Software1

Prion•added 2017/10/10 6:29 p.m.•7 views

Cross site scripting

MISP before 2.4.81 has a potential reflected XSS in a quickDelete action that is used to delete a sighting, related to app/View/Sightings/ajax/quickDeleteConfirmationForm.ctp and app/webroot/js/misp.js...

4.3CVSS5.9AI score0.00266EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by