Описание
An issue was discovered in MISP before 2.4.158. There is stored XSS via the LinOTP login field.
An issue was discovered in MISP before 2.4.158. There is stored XSS via the LinOTP login field.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-29529
- https://github.com/MISP/MISP/commit/9623de2f5cca011afc581d55cfa5ce87682894fd
- https://github.com/MISP/MISP/compare/v2.4.157...v2.4.158
- https://zigrin.com/advisories/misp-stored-xss-via-the-linotp-login-field
- https://zigrin.com/cakephp-application-cybersecurity-research-protect-your-website-from-stored-xss-attacks-understanding-and-preventing-vulnerabilities-in-open-source-applications
Связанные уязвимости
CVSS3: 5.4
nvd
почти 4 года назад
An issue was discovered in MISP before 2.4.158. There is stored XSS via the LinOTP login field.