CVE-2015-5720
N/A
N/A
Summary
Multiple cross-site scripting (XSS) vulnerabilities in the template-creation feature in Malware Information Sharing Platform (MISP) before 2.3.90 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) add.ctp, (2) edit.ctp, and (3) ajaxification.js.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.circl.lu/advisory/CVE-2015-5720/
- http://www.securityfocus.com/bid/92738
- https://github.com/MISP/MISP/commit/812ac878c3645c02e2a599287117418424cbd4cf
References
- https://www.circl.lu/advisory/CVE-2015-5720/
- http://www.securityfocus.com/bid/92738
- https://github.com/MISP/MISP/commit/812ac878c3645c02e2a599287117418424cbd4cf
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.