CVE-2023-49926 | MISP up to 2.4.178 Event Timeline Widget EventTimelineTool.php cross site scripting

Inserito da Angelo Barbosa | Dic 3, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in MISP up to 2.4.178. This issue affects some unknown processing in the library app/Lib/Tools/EventTimelineTool.php of the component Event Timeline Widget. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2023-49926. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-49926 | MISP up to 2.4.178 Event Timeline Widget EventTimelineTool.php cross site scripting

Post correlati

CVE-2024-22458 | Dell Secure Connect Gateway 5.20.00.10 risky encryption (dsa-2024-076)

CVE-2023-7051 | PHPGurukul Online Notes Sharing System 1.0 /user/manage-notes.php delid cross-site request forgery

CVE-2024-0601 | ZhongFuCheng3y Austin 1.0 Email Message Template AustinFileUtils.java getRemoteUrl2File server-side request forgery

CVE-2024-27353 | Insyde InsydeH2O SdHost/SdMmcDevice memory corruption