CVE-2024-43721

creationtimestamp| type| source ---|---|--- 2025-09-16 23:16:38+00:00| seen| MISP/be792712-f638-4d7d-b62d-4f5032e86764 2025-09-18 16:44:32+00:00| seen| MISP/be792712-f638-4d7d-b62d-4f5032e86764...

CVE-2023-24070

app/View/AuthKeys/authkeydisplay.ctp in MISP through 2.4.167 has an XSS in authkey add via a Referer field...

CVE-2025-23493

creationtimestamp| type| source ---|---|--- 2025-03-03 20:30:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6271 2025-08-18 18:31:00+00:00| seen| MISP/fc16b923-3a13-4e9d-9aac-10a57cac12c7...

CVE-2024-12276

creationtimestamp| type| source ---|---|--- 2025-02-21 10:20:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/4873 2025-02-21 13:55:28+00:00| seen| https://t.me/cvedetector/18642 2025-08-25 13:32:05+00:00| seen| MISP/9ca82492-7deb-4197-a6f1-191e121eef96...

MISP 跨站脚本漏洞

MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP versions prior to 2.4.167, which stems from XSS i...

QSC 2022: Qualys’ Threat Research Unit (TRU) – Our Shield Is Your Shield

Day two of QSC profiled the special launch of the Qualys Threat Research Unit, TRU. Taking the audience through a madcap tour of what the threat research unit is doing to provide intelligence and actionable insights into its census was Travis Smith, VP of Qualys Threat Research Unit. He dove deep...

CrowdSec - An Open-Source Massively Multiplayer Firewall Able To Analyze Visitor Behavior And Provide An Adapted Response To All Kinds Of Attacks

CrowdSec is a free, modern & collaborative behavior detection engine, coupled with a global IP reputation network. It stacks on fail2ban's philosophy but is IPV6 compatible and 60x faster Go vs Python, uses Grok patterns to parse logs and YAML scenario to identify behaviors. CrowdSec is engineere...

MISP 安全漏洞

MISP is an open source software solution for collecting, storing, distributing and sharing cybersecurity metrics and threats related to cybersecurity event analysis and malware analysis. An information disclosure vulnerability exists in app/Model/MispObject.php in MISP version 2.4.141. The...

MISP - Malware Information Sharing Platform and Threat Sharing

The objective of MISP is to foster the sharing of structured information within the security community and abroad. MISP provides functionalities to support the exchange of information but also the consumption of the information by Network Intrusion Detection System NIDS, LIDS but also log analysi...

Research Drives Protection

The threat landscape has changed often in the 22 years I’ve been working at Trend Micro and it will continue to change for many more years. We in cybersecurity are constantly at battle with hackers and threat actors who look to infect our customers using the many tactics available to them. Our jo...

August 15, 2017 – Morning Cyber Coffee Headlines – “Cats” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! August 15, 2017 - Headlines How Cybersecurity Became 2017’s Hot New Major - The...

Malware Information Sharing Platform Cross-Site Scripting Vulnerability

MISP is an open source software solution for collecting, storing, distributing and sharing cybersecurity metrics and threats cybersecurity incident analysis and malware analysis. MISP suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject arbitrary...

Malware Information Sharing Platform: MISP

Malware Information Sharing Platform MISP, Malware Information Sharing Platform and Threat Sharing, is an open source software solution for collecting, storing, distributing and sharing cyber security indicators and threat about cyber security incidents analysis and malware analysis. MISP is...

Crowd-Sourced Threat Intelligence: AlienVault Open Threat Exchange™ (OTX)

For years, the systems and networks that run our businesses have been secured by the efforts of IT and security practitioners acting on their own. We continue to deploy the latest countermeasures, always trying to keep up with adversaries. Criminal attackers, on the other hand, have shared...