Back to search
CVE-2017-15216
Published: Oct 10, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
MISP before 2.4.81 has a potential reflected XSS in a quickDelete action that is used to delete a sighting, related to app/View/Sightings/ajax/quickDeleteConfirmationForm.ctp and app/webroot/js/misp.js.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://www.misp.software/Changelog.txt
x_refsource_CONFIRM
https://github.com/MISP/MISP/commit/ca6f4a783a6ba65532dc8767446bda44773ec627
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now