A persistent XSS issue exists in app/View/Helper/CommandHelper.php in MISP prior to 2.4.107. JavaScript can be included in the discussion interface, and can be triggered by clicking on the link.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
misp misp |