Filtered by vendor Misp-project
Subscriptions
Total
24 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-28607 | 1 Misp-project | 1 Malware Information Sharing Platform | 2024-08-02 | 6.1 Medium |
| js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip. | ||||
| CVE-2023-24070 | 1 Misp-project | 1 Malware Information Sharing Platform | 2024-08-02 | 6.1 Medium |
| app/View/AuthKeys/authkey_display.ctp in MISP through 2.4.167 has an XSS in authkey add via a Referer field. | ||||
| CVE-2023-24028 | 1 Misp-project | 1 Misp | 2024-08-02 | 9.8 Critical |
| In MISP 2.4.167, app/Controller/Component/ACLComponent.php has incorrect access control for the decaying import function. | ||||
| CVE-2023-24026 | 1 Misp-project | 1 Misp | 2024-08-02 | 6.1 Medium |
| In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload. | ||||