Lucene search
K

73 matches found

CVE
CVE
added 2020/05/18 9:11 p.m.95 views

CVE-2020-13153

Summary: CVE-2020-13153 affects MISP prior to 2.4.126, with a cross-site scripting (XSS) vulnerability in the file app/View/Events/resolved_attributes.ctp used to render the resolved attributes view. Affected software/component: MISP (the resolved attributes view) before version 2.4.126. Root cau...

6.1CVSS5.9AI score0.00835EPSS
CVE
CVE
added 2022/03/18 5:15 p.m.89 views

CVE-2022-27243

CVE-2022-27243 affects MISP versions before 2.4.156. The vulnerability is a Local File Inclusion in the view template app/View/Users/terms.ctp triggered via the custom terms file setting. This could allow an attacker to read local files through the terms functionality. The issue is fixed in 2.4.1...

7.8CVSS7.5AI score0.0116EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.88 views

CVE-2022-29532

CVE-2022-29532 affects MISP prior to 2.4.158. There is a cross-site scripting vulnerability in the cerebrate view: if one administrator enters a javascript: URL in the URL field and another administrator clicks it, malicious JavaScript can be executed. The issue is reported across multiple source...

4.8CVSS4.8AI score0.00821EPSS
CVE
CVE
added 2022/03/18 5:14 p.m.84 views

CVE-2022-27244

The CVE-2022-27244 issue affects MISP prior to 2.4.156. The vulnerability is a stored XSS in the custom authentication name, exploitable when an administrator modifies a user. Multiple connected sources (Red Hat, CNVD, OSV, CNVD, CVE lists) corroborate that an attacker with site-admin privileges ...

4.8CVSS4.7AI score0.00458EPSS
CVE
CVE
added 2020/02/11 12:0 a.m.81 views

CVE-2020-8893

CVE-2020-8893 affects MISP prior to 2.4.121. The issue is in the Galaxy view (file: app/View/Galaxies/view.ctp) where a search string was not properly sanitized, enabling improper handling of input. Impact is described in the sources as a vulnerability in the Galaxy search functionality; explicit...

7.5CVSS7.5AI score0.02061EPSS
CVE
CVE
added 2022/03/18 5:14 p.m.81 views

CVE-2022-27245

CVE-2022-27245 affects MISP up to version 2.4.156. The issue is that app/Model/Server.php does not restrict generateServerSettings to the CLI, enabling potential SSRF from an attacker's input. Documented impact: SSRF with network scope and partial confidentiality/integrity/availability implicatio...

8.8CVSS8.5AI score0.00853EPSS
CVE
CVE
added 2024/02/09 12:0 a.m.81 views

CVE-2024-25675

CVE-2024-25675 affects MISP prior to 2.4.184. The issue allows a client to start an export generation process without using POST, related to files app/Controller/JobsController.php and app/View/Events/export.ctp. According to connected sources, this could enable unintended initiation of export ta...

9.8CVSS9.3AI score0.00817EPSS
CVE
CVE
added 2024/03/21 12:0 a.m.80 views

CVE-2024-29858

CVE-2024-29858 affects MISP prior to 2.4.187. The issue is in the uploadLogo function (app/Controller/OrganisationsController.php) which does not properly validate uploaded logos, i.e., it does not correctly check for a valid logo file. This could lead to unsafe logo uploads. Remediation: upgrade...

9.8CVSS6.8AI score0.00381EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.78 views

CVE-2022-29531

CVE-2022-29531 affects MISP before 2.4.158, with a stored XSS in the event graph via a tag name. Root cause: tag names lack data validation/filters, enabling injected JavaScript on the client side. Impact per sources: possible client-side script execution; affected versions are prior to 2.4.158. ...

5.4CVSS5.1AI score0.0081EPSS
CVE
CVE
added 2020/02/11 11:41 p.m.76 views

CVE-2020-8892

CVE-2020-8892 affects MISP prior to 2.4.121. The root cause is that the HTTP PUT method was not considered when blocking a brute-force series of invalid requests. CVSS scores indicate a high impact (3.1: 8.1) with network attack vector; substantial confidentiality, integrity, and availability imp...

8.1CVSS7.9AI score0.01722EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.76 views

CVE-2022-29530

CVE-2022-29530 – MISP stored XSS in galaxy clusters affects MISP versions prior to 2.4.158. The vulnerability arises from a lack of data validation/filtering of user-supplied data and its output in galaxy clusters, allowing an attacker to execute JavaScript in a victim’s browser (stored XSS). Pub...

5.4CVSS5.1AI score0.0081EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.76 views

CVE-2022-29533

CVE-2022-29533 affects MISP before 2.4.158 and is due to a cross-site scripting (XSS) flaw in the file app/Controller/OrganisationsController.php when handling a “weird single checkbox page.” Concrete details across connected sources confirm the vulnerable component and the impact is XSS; exploit...

6.1CVSS5.9AI score0.00799EPSS
CVE
CVE
added 2020/02/11 11:41 p.m.74 views

CVE-2020-8891

The CVE-2020-8891 entry concerns MISP prior to 2.4.121 where brute-force blocking failed to canonicalize usernames. This is a software-level input normalization flaw in the authentication/brute-force protection path that could enable bypass of rate-limiting or account blocking under certain inval...

5.9CVSS5.6AI score0.01419EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.74 views

CVE-2022-29529

CVE-2022-29529 affects the MISP project prior to 2.4.158, with a stored XSS in the LinOTP login field. Root cause: insufficient input validation and output of user-supplied data in that field. Impact: potential execution of JavaScript in affected users’ browsers. Remediation: upgrade to MISP 2.4....

5.4CVSS5.1AI score0.00813EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.73 views

CVE-2022-29528

Occurrences across multiple sources confirm CVE-2022-29528: MISP before 2.4.158 is affected by PHAR deserialization. The root cause is PHAR deserialization in MISP; impact and exploit details are not explicitly described in the provided documents beyond the vulnerability description. Affected ver...

9.8CVSS9.4AI score0.02138EPSS
CVE
CVE
added 2024/03/21 12:0 a.m.71 views

CVE-2024-29859

CVE-2024-29859 affects MISP prior to 2.4.187. The issue is in add_misp_export (app/Controller/EventsController.php) where there is an insufficient check for a valid file upload, constituting the root cause. Documented impact indicates potential exposure related to file uploads, with high-severity...

9.8CVSS6.8AI score0.00816EPSS
CVE
CVE
added 2020/02/11 12:0 a.m.70 views

CVE-2020-8894

CVE-2020-8894 concerns MISP before 2.4.121, where ACLs for discussion threads were mishandled in the code paths of ThreadsController.php and Thread.php. The vulnerability arises from improper access control logic, enabling potential permission misconfigurations or exposure of thread discussions d...

6.5CVSS6.5AI score0.01387EPSS
CVE
CVE
added 2024/09/15 12:0 a.m.68 views

CVE-2024-46918

CVE-2024-46918 affects MISP prior to 2.4.198. The issue is in app/Controller/UserLoginProfilesController.php where an org admin can view sensitive login fields of another org admin within the same org. Root cause: inadequate access controls on login profile data. Impact: high confidentiality and ...

9.8CVSS7AI score0.00436EPSS
CVE
CVE
added 2020/02/11 11:41 p.m.66 views

CVE-2020-8890

CVE-2020-8890 affects MISP before 2.4.121. The root cause is mishandling of time skew between the web server and database when attempting to block a brute-force sequence of invalid requests. This misalignment can undermine the intended rate-limiting or blocking logic. The connected records consis...

5.9CVSS5.6AI score0.01089EPSS
CVE
CVE
added 2021/09/17 12:0 a.m.65 views

CVE-2021-41326

CVE-2021-41326 affects MISP prior to 2.4.148, where the code path app/Lib/Export/OpendataExport.php mishandles input used in a shell_exec call, enabling command-injection-like behavior. The Red Hat/NVD/CVE records describe the vulnerability consistently, with high to critical impact in CVSS metri...

9.8CVSS9.4AI score0.02134EPSS
CVE
CVE
added 2022/04/20 12:0 a.m.64 views

CVE-2022-29534

CVE-2022-29534 (MISP) : Affects MISP builds before 2.4.158. In UsersController.php, password confirmation can be bypassed via vectors involving the Accept: application/json header, enabling a partial integrity impact without proper authentication. The CVSS3.1 score is 7.5 (HIGH), with network att...

7.5CVSS7.4AI score0.01566EPSS
CVE
CVE
added 2023/03/18 12:0 a.m.60 views

CVE-2023-28607

CVE-2023-28607 affects the MISP project. The issue is a cross-site scripting (XSS) vulnerability in the JavaScript file js/event-graph.js (in MISP) that is exploitable via the event-graph relationship tooltip. Affected versions are MISP prior to 2.4.169; upgrading to 2.4.169 or later is recommend...

6.1CVSS5.9AI score0.00382EPSS
Web
CVE
CVE
added 2025/03/28 12:0 a.m.60 views

CVE-2024-58128

CVE-2024-58128 (MISP) affects MISP prior to 2.4.193. The issue allows attackers with admin privileges to perform cross-site scripting (XSS) through the menu_custom_right_link parameter set via the UI (no CLI). The root cause is an insufficiency in input validation/handling of that parameter, enab...

5.5CVSS6.2AI score0.00208EPSS
CVE
CVE
added 2022/03/18 5:13 p.m.58 views

CVE-2022-27246

CVE-2022-27246 : The connected records confirm an issue in MISP prior to 2.4.156 where an SVG organization logo is not forbidden by default. This may allow embedded JavaScript in the SVG to execute, as described in the initial entry. The documents do not provide explicit impact details beyond the...

6.1CVSS6.2AI score0.00573EPSS
CVE
CVE
added 2023/02/20 12:0 a.m.57 views

CVE-2022-48329

CVE-2022-48329 affects MISP before 2.4.166, where the order parameter can be used insecurely. The vulnerability relates to specific PHP components: app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php. It has a CV...

9.8CVSS9.2AI score0.00929EPSS
CVE
CVE
added 2024/02/09 12:0 a.m.57 views

CVE-2024-25674

CVE-2024-25674 affects MISP before 2.4.184. The issue is insecure organisation logo upload due to missing checks for file extension and MIME type, enabling potential abuse. CVSSv3.1 base score 9.8 (CRITICAL) with attack vector NETWORK, no auth, high impact to confidentiality, integrity, and avail...

9.8CVSS9.4AI score0.00769EPSS
CVE
CVE
added 2025/03/28 12:0 a.m.56 views

CVE-2024-58130

The CVE-2024-58130 affects MISP prior to 2.4.193 in RestResponseComponent.php where non-JSON REST responses are not sanitized. This could allow processing of non-JSON outputs through REST endpoints. Remediation: upgrade to MISP 2.4.193 (or later).

7.2CVSS7.2AI score0.00217EPSS
CVE
CVE
added 2023/02/20 12:0 a.m.54 views

CVE-2022-48328

CVE-2022-48328 affects MISP prior to 2.4.167, where the file app/Controller/Component/IndexFilterComponent.php mishandles ordered_url_params and additional_delimiters. The consolidated sources (NVD, Red Hat, OSV, etc.) identify this as a vulnerability with a critical CVSS v3.1 base score of 9.8 (...

9.8CVSS9.3AI score0.01298EPSS
CVE
CVE
added 2023/03/18 12:0 a.m.54 views

CVE-2023-28606

The CVE-2023-28606 issue affects MISP and stems from the js/event-graph.js component, where tooltips in the event-graph node UI can be exploited to perform XSS. Affected versions are MISP before 2.4.169; remediation is to upgrade to version 2.4.169 or later. The connected sources confirm the vuln...

6.1CVSS5.9AI score0.00382EPSS
CVE
CVE
added 2018/03/23 5:0 p.m.53 views

CVE-2018-8948

CVE-2018-8948 affects MISP prior to 2.4.89, with multiple XSS flaws in app/View/Events/resolved_attributes.ctp due to a malicious MISP module. Impact is cross-site scripting; the documents do not specify exploit details or a remediation patch/version.

6.1CVSS6AI score0.00809EPSS
CVE
CVE
added 2024/09/01 12:0 a.m.52 views

CVE-2024-45509

In MISP up to 2.4.196, there is an access control vulnerability in app/Controller/BookmarksController.php that allows non-org-admin users to access bookmarks data. Root cause: insufficient restriction for non-admin users in the BookmarksController. Impact: exposure of bookmarks data with confiden...

9.8CVSS6.9AI score0.00395EPSS
CVE
CVE
added 2025/02/14 12:0 a.m.52 views

CVE-2024-57969

CVE-2024-57969 affects MISP prior to 2.4.198. The root cause is that app/Model/Attribute.php ignores an ACL during a GUI attribute search, which can bypass access controls when listing attributes. Impact details in the sources indicate low confidentiality impact and no data integrity/availability...

4.3CVSS7AI score0.00235EPSS
CVE
CVE
added 2022/10/10 12:0 a.m.51 views

CVE-2022-42724

CVE-2022-42724 affects MISP up to version 2.4.164. A flaw in app/Controller/UsersController.php allows an attacker to disclose role names that should be admin‑only, resulting in information disclosure. Affected software: MISP prior to 2.4.164. Root cause: improper protection of sensitive role inf...

4.3CVSS4.4AI score0.00445EPSS
CVE
CVE
added 2022/12/22 12:0 a.m.49 views

CVE-2022-47928

Summary: CVE-2022-47928 is a cross-site scripting (XSS) vulnerability in MISP prior to 2.4.167, caused by an XSS flaw in the template file uploads feature (app/View/Templates/upload_file.ctp). The issue is documented across multiple sources (NVD, Red Hat, OSV, etc.) and is specifically tied to th...

6.1CVSS5.9AI score0.00415EPSS
CVE
CVE
added 2025/03/28 12:0 a.m.49 views

CVE-2024-58129

CVE-2024-58129 affects MISP prior to version 2.4.193. The issue allows attackers with admin privileges to set menu_custom_right_link_html through the UI (not the CLI), enabling cross-site scripting on every page. The risk description in the connected documents confirms XSS across pages due to thi...

5.5CVSS6.3AI score0.00208EPSS
CVE
CVE
added 2021/07/07 12:34 p.m.46 views

CVE-2021-36212

CVE-2021-36212 affects MISP prior to version 2.4.146, with stored XSS in the file path app/View/SharingGroups/view.ctp affecting the sharing groups view. The NVD/CVE data show a CVSSv3.1 base score of 6.1 (NETWORK, LOW attack complexity, UI REQUIRED, CHANGED scope; Impact: LOW confidentiality/int...

6.1CVSS5.9AI score0.00626EPSS
CVE
CVE
added 2023/11/17 12:0 a.m.46 views

CVE-2023-48659

CVE-2023-48659 affects MISP prior to 2.4.176. The issue resides in app/Controller/AppController.php where parameter parsing is mishandled, enabling a high-impact vulnerability per CVSS 3.1 (CRITICAL, 9.8; NETWORK, no user interaction). The connected sources confirm the vulnerable component and it...

9.8CVSS9.4AI score0.00907EPSS
CVE
CVE
added 2019/09/10 1:7 p.m.45 views

CVE-2019-16202

MISP pre-2.4.115 permits privilege escalation in certain scenarios. After upgrading to 2.4.115, attempts are blocked by the __checkLoggedActions function with a message indicating potential privilege escalation in older vulnerable versions. Connected sources confirm the affected product/version a...

6.5CVSS6.5AI score0.01324EPSS
CVE
CVE
added 2020/04/02 11:32 a.m.45 views

CVE-2020-11458

CVE-2020-11458 affects MISP versions prior to 2.4.124, where app/Model/feed.php allows administrators to select arbitrary files to ingest. This does not expose full file contents but can leak strings matching patterns, including passwords from database.php or GPG passphrases from config.php. Rele...

4.9CVSS5.1AI score0.01108EPSS
CVE
CVE
added 2019/03/28 2:45 p.m.44 views

CVE-2019-10254

CVE-2019-10254 (MISP) : A Reflected XSS vulnerability exists in the default layout template (app/View/Layouts/default.ctp) of MISP prior to version 2.4.105. The issue arises in the default.ctp template and enables injection of arbitrary web script/HTML. Public references in the CVE describe the a...

6.1CVSS5.9AI score0.00871EPSS
CVE
CVE
added 2019/05/08 1:0 p.m.43 views

CVE-2019-11813

CVE-2019-11813 applies to MISP before 2.4.107, affecting the view component app/View/Elements/Events/View/value_field.ctp. The issue is a persistent XSS via link type attributes using javascript:// links, enabling potentially scripted payloads in affected installations. Root cause is improper han...

6.1CVSS5.9AI score0.008EPSS
Web
CVE
CVE
added 2023/06/30 12:0 a.m.43 views

CVE-2023-37307

CVE-2023-37307 affects MISP before 2.4.172. The issue is improper sanitization of the title_for_layout field in Correlations, CorrelationExclusions, and Layouts, enabling (authenticated) stored cross-site scripting as demonstrated by public advisories and exploits. The NVD/OSV/Red Hat/CNNVD refer...

5.4CVSS5.4AI score0.00502EPSS
CVE
CVE
added 2023/11/17 12:0 a.m.43 views

CVE-2023-48657

CVE-2023-48657 affects MISP before 2.4.176. The vulnerability stems from mishandling of filters in app/Model/AppModel.php, as described across multiple feeds (NVD/Red Hat/OSV/etc.). Impact is high: the CVSS 3.1 base score is 9.8 (HIGH/CRITICAL) with NETWORK attack vector, NO user interaction, and...

9.8CVSS9.4AI score0.00907EPSS
CVE
CVE
added 2018/03/23 5:0 p.m.42 views

CVE-2018-8949

CVE-2018-8949 involves MISP before 2.4.89, where a flaw in app/Model/Attribute.php creates an API integrity risk that could let a user delete attributes of other events. A crafted event edit (no attribute UUIDs but with attribute IDs set) could overwrite an existing attribute, potentially impacti...

5.5CVSS4.5AI score0.00765EPSS
CVE
CVE
added 2019/05/08 12:59 p.m.42 views

CVE-2019-11812

CVE-2019-11812 is a persistent XSS in MISP prior to 2.4.107. The vulnerability is in the PHP component app/View/Helper/CommandHelper.php, where JavaScript can be injected via the discussion interface and triggered by clicking a link. Affected product/version: MISP (before 2.4.107). Root cause is ...

6.1CVSS5.9AI score0.00809EPSS
CVE
CVE
added 2020/09/18 5:36 p.m.42 views

CVE-2020-25766

CVE-2020-25766 affects MISP prior to 2.4.132. Root cause: a POST operation on a form not linked to the login page can trigger an unwanted action. Affects versions before 2.4.132; documented impact includes possible unauthorized action with low attack complexity (network vector) and no authenticat...

7.5CVSS7.4AI score0.01221EPSS
CVE
CVE
added 2023/11/17 12:0 a.m.42 views

CVE-2023-48655

CVE-2023-48655 affects MISP versions prior to 2.4.176. The issue is in app/Controller/Component/IndexFilterComponent.php, which does not properly filter out query parameters, enabling improper handling of input. This vulnerability is documented across multiple sources (Red Hat, NVD, OSV, CVE list...

9.8CVSS9.4AI score0.00907EPSS
CVE
CVE
added 2019/05/08 1:0 p.m.41 views

CVE-2019-11814

The CVE-2019-11814 entry concerns MISP prior to version 2.4.107. Affected: the web UI script at app/webroot/js/misp.js. Description: persistent XSS via image names in titles, demonstrated by a screenshot. Impact as stated centers on XSS exposure in title fields. Exploitation details are not provi...

6.1CVSS5.8AI score0.00809EPSS
CVE
CVE
added 2020/07/14 12:5 p.m.40 views

CVE-2020-15711

Affected software: MISP (Malware Information Sharing Platform) prior to version 2.4.129. Vulnerability: Cross‑Site Request Forgery (CSRF) in the web application that fails to verify requests originate from trusted users when setting a favourite homepage. Root cause: Inadequate CSRF protection in ...

8.8CVSS8.7AI score0.0049EPSS
CVE
CVE
added 2026/06/02 12:48 p.m.38 views

CVE-2026-10611

CVE-2026-10611 describes an authentication bypass in MISP when LDAP mixed authentication is enabled with OTP enforcement. In deployments with LdapAuth.mixedAuth=true and Security.require_otp=true, users authenticated via an authentication plugin (e.g., LDAP) may have their session established dur...

10CVSS5.8AI score0.00353EPSS
Total number of security vulnerabilities73