CVE-2015-5719
on github
Published
Severity
CVSS v3:
9.8 CRITICAL
CVSS v2:
10 HIGH
Description
app/Controller/TemplatesController.php in Malware Information Sharing Platform (MISP) before 2.3.92 does not properly restrict filenames under the tmp/files/ directory, which has unspecified impact and attack vectors.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:misp-project:malware_information_sharing_platform:*:*:*:*:*:*:*:* | n/a | 2.3.91 (including) | * |