CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Misp: >> Misp >> 2.4.174 Security Vulnerabilities

CVE-2023-50918

app/Controller/AuditLogsController.php in MISP before 2.4.182 mishandles ACLs for audit logs.

CVSS Score

9.8

EPSS Score

0.002

Published

2023-12-15

CVE-2023-49926

app/Lib/Tools/EventTimelineTool.php in MISP before 2.4.179 allows XSS in the event timeline widget.

CVSS Score

6.1

EPSS Score

0.001

Published

2023-12-03

CVE-2023-41098

An issue was discovered in MISP 2.4.174. In app/Controller/DashboardsController.php, a reflected XSS issue exists via the id parameter upon a dashboard edit.

CVSS Score

6.1

EPSS Score

0.001

Published

2023-08-23

CVE-2023-40224

MISP 2.4.174 allows XSS in app/View/Events/index.ctp.

CVSS Score

6.1

EPSS Score

0.001

Published

2023-08-10

Page 2

Vulnerabilities

Vulnerable Software

Misp: >> Misp >> 2.4.174 Security Vulnerabilities

Products

Pricing

Contact Us