CVE-2023-41098

on github

Published

August 23, 2023

Severity

CVSS v3:

6.1 MEDIUM

CVSS v2:

N/A

Description

An issue was discovered in MISP 2.4.174. In app/Controller/DashboardsController.php, a reflected XSS issue exists via the id parameter upon a dashboard edit.

References

https://github.com/MISP/MISP/commit/09fb0cba65eab9341e81f1cbebc2ae10be34a2b7

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:misp:misp:2.4.174:::::::*	n/a	n/a	2.4.174

External Links

NVD - CVE-2023-41098