Luciano Righetti

11 exploits Active since Jul 2021
CVE-2026-39962 WRITEUP CRITICAL WRITEUP
LDAP injection in MISP ApacheAuthenticate when using a user-controlled Apache environment variable
MISP is an open source threat intelligence and sharing platform. Prior to 2.5.36, improper neutralization of special elements in an LDAP query in ApacheAuthenticate.php allows LDAP injection via an unsanitized username value when ApacheAuthenticate.apacheEnv is configured to use a user-controlled server variable instead of REMOTE_USER (such as in certain proxy setups). An attacker able to control that value can manipulate the LDAP search filter and potentially bypass authentication constraints or cause unauthorized LDAP queries. This vulnerability is fixed in 2.5.36.
CVSS 9.6
CVE-2026-39962 WRITEUP CRITICAL WRITEUP
LDAP injection in MISP ApacheAuthenticate when using a user-controlled Apache environment variable
MISP is an open source threat intelligence and sharing platform. Prior to 2.5.36, improper neutralization of special elements in an LDAP query in ApacheAuthenticate.php allows LDAP injection via an unsanitized username value when ApacheAuthenticate.apacheEnv is configured to use a user-controlled server variable instead of REMOTE_USER (such as in certain proxy setups). An attacker able to control that value can manipulate the LDAP search filter and potentially bypass authentication constraints or cause unauthorized LDAP queries. This vulnerability is fixed in 2.5.36.
CVSS 9.6
CVE-2021-36212 WRITEUP MEDIUM WRITEUP
MISP <2.4.146 - XSS
app/View/SharingGroups/view.ctp in MISP before 2.4.146 allows stored XSS in the sharing groups view.
CVSS 6.1
CVE-2021-39302 WRITEUP CRITICAL WRITEUP
Misp - SQL Injection
MISP 2.4.148, in certain configurations, allows SQL injection via the app/Model/Log.php $conditions['org'] value.
CVSS 9.8
CVE-2022-27243 WRITEUP HIGH WRITEUP
MISP <2.4.156 - Info Disclosure
An issue was discovered in MISP before 2.4.156. app/View/Users/terms.ctp allows Local File Inclusion via the custom terms file setting.
CVSS 7.8
CVE-2022-27245 WRITEUP HIGH WRITEUP
Misp < 2.4.156 - SSRF
An issue was discovered in MISP before 2.4.156. app/Model/Server.php does not restrict generateServerSettings to the CLI. This could lead to SSRF.
CVSS 8.8
CVE-2022-27246 WRITEUP MEDIUM WRITEUP
Misp < 2.4.156 - XSS
An issue was discovered in MISP before 2.4.156. An SVG org logo (which may contain JavaScript) is not forbidden by default.
CVSS 6.1
CVE-2023-37306 WRITEUP HIGH WRITEUP
Misp-project Malware Information Shar... - Error Information Exposure
MISP 2.4.172 mishandles different certificate file extensions in server sync. An attacker can obtain sensitive information because of the nature of the error messages.
CVSS 7.5
CVE-2023-41098 WRITEUP MEDIUM WRITEUP
MISP <2.4.174 - XSS
An issue was discovered in MISP 2.4.174. In app/Controller/DashboardsController.php, a reflected XSS issue exists via the id parameter upon a dashboard edit.
CVSS 6.1
CVE-2023-48655 WRITEUP CRITICAL WRITEUP
MISP <2.4.176 - Info Disclosure
An issue was discovered in MISP before 2.4.176. app/Controller/Component/IndexFilterComponent.php does not properly filter out query parameters.
CVSS 9.8
CVE-2023-48656 WRITEUP CRITICAL WRITEUP
MISP <2.4.176 - Info Disclosure
An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php mishandles order clauses.
CVSS 9.8