Misp Security Vulnerabilities and Issues — Misp CVE List

Lucene search

Misp-projectMisp

4 matches found

CVE•added 2018/03/23 5:29 p.m.•44 views

CVE-2018-8948

In MISP before 2.4.89, app/View/Events/resolved_attributes.ctp has multiple XSS issues via a malicious MISP module.

6.1CVSS6AI score0.0024EPSS

CVE•added 2023/01/20 10:15 p.m.•42 views

CVE-2023-24026

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload.

6.1CVSS6AI score0.00098EPSS

CVE•added 2017/10/10 6:29 p.m.•38 views

CVE-2017-15216

MISP before 2.4.81 has a potential reflected XSS in a quickDelete action that is used to delete a sighting, related to app/View/Sightings/ajax/quickDeleteConfirmationForm.ctp and app/webroot/js/misp.js.

6.1CVSS5.9AI score0.00266EPSS

CVE•added 2018/05/18 6:29 p.m.•34 views

CVE-2018-11245

app/webroot/js/misp.js in MISP 2.4.91 has a DOM based XSS with cortex type attributes.

6.1CVSS5.9AI score0.0024EPSS