An issue was discovered in MISP before 2.4.176. app/Controller/AppController.php mishandles parameter parsing.
References
Link | Resource |
---|---|
https://github.com/MISP/MISP/commit/37ecf81b84a01baa4d4b1fade4de94a9018c32ed | Patch |
https://github.com/MISP/MISP/compare/v2.4.175...v2.4.176 | Issue Tracking Patch Release Notes |
https://zigrin.com/advisories/misp-reflected-cross-site-scripting-in-galaxies/ |
Configurations
History
10 Jan 2024, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Nov 2023, 17:54
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
First Time |
Misp-project
Misp-project malware Information Sharing Platform |
|
CPE | cpe:2.3:a:misp-project:malware_information_sharing_platform:*:*:*:*:*:*:*:* | |
References | () https://github.com/MISP/MISP/commit/37ecf81b84a01baa4d4b1fade4de94a9018c32ed - Patch | |
References | () https://github.com/MISP/MISP/compare/v2.4.175...v2.4.176 - Issue Tracking, Patch, Release Notes |
17 Nov 2023, 05:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-17 05:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-48659
Mitre link : CVE-2023-48659
CVE.ORG link : CVE-2023-48659
JSON object : View
Products Affected
misp-project
- malware_information_sharing_platform
CWE