iglocska

99 exploits Active since Sep 2016
CVE-2022-25320 WRITEUP MEDIUM WRITEUP
cerebrate < 1.4 - Username Enumeration
An issue was discovered in Cerebrate through 1.4. Username enumeration could occur.
CVSS 5.3
CVE-2022-27244 WRITEUP MEDIUM WRITEUP
MISP < 2.4.156 - Stored Cross-Site Scripting via Custom Auth Name
An issue was discovered in MISP before 2.4.156. A malicious site administrator could store an XSS payload in the custom auth name. This would be executed each time the administrator modifies a user.
CVSS 4.8
CVE-2022-29528 WRITEUP CRITICAL WRITEUP
MISP < 2.4.158 - Deserialization of Untrusted Data via PHAR
An issue was discovered in MISP before 2.4.158. PHAR deserialization can occur.
CVSS 9.8
CVE-2022-29529 WRITEUP MEDIUM WRITEUP
MISP < 2.4.158 - Stored Cross-Site Scripting via LinOTP Login Field
An issue was discovered in MISP before 2.4.158. There is stored XSS via the LinOTP login field.
CVSS 5.4
CVE-2022-29530 WRITEUP MEDIUM WRITEUP
MISP < 2.4.158 - Stored Cross-Site Scripting in Galaxy Clusters
An issue was discovered in MISP before 2.4.158. There is stored XSS in the galaxy clusters.
CVSS 5.4
CVE-2022-29531 WRITEUP MEDIUM WRITEUP
MISP < 2.4.158 - Stored Cross-Site Scripting via Event Graph Tag Name
An issue was discovered in MISP before 2.4.158. There is stored XSS in the event graph via a tag name.
CVSS 5.4
CVE-2022-29532 WRITEUP MEDIUM WRITEUP
MISP < 2.4.158 - Stored Cross-Site Scripting in Cerebrate View via URL Field
An issue was discovered in MISP before 2.4.158. There is XSS in the cerebrate view if one administrator puts a javascript: URL in the URL field, and another administrator clicks on it.
CVSS 4.8
CVE-2022-29533 WRITEUP MEDIUM WRITEUP
MISP < 2.4.158 - Cross-Site Scripting in OrganisationsController
An issue was discovered in MISP before 2.4.158. There is XSS in app/Controller/OrganisationsController.php in a situation with a "weird single checkbox page."
CVSS 6.1
CVE-2022-29534 WRITEUP HIGH WRITEUP
MISP < 2.4.158 - Improper Authentication via Accept Header Manipulation
An issue was discovered in MISP before 2.4.158. In UsersController.php, password confirmation can be bypassed via vectors involving an "Accept: application/json" header.
CVSS 7.5
CVE-2022-47928 WRITEUP MEDIUM WRITEUP
MISP < 2.4.167 - Cross-Site Scripting in Template File Upload
In MISP before 2.4.167, there is XSS in the template file uploads in app/View/Templates/upload_file.ctp.
CVSS 6.1
CVE-2022-48328 WRITEUP CRITICAL WRITEUP
MISP < 2.4.167 - SQL Injection via IndexFilterComponent Parameter Handling
app/Controller/Component/IndexFilterComponent.php in MISP before 2.4.167 mishandles ordered_url_params and additional_delimiters.
CVSS 9.8
CVE-2022-48329 WRITEUP CRITICAL WRITEUP
MISP < 2.4.166 - Improper Handling of Exceptional Conditions via Order Parameter
MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.
CVSS 9.8
CVE-2023-41363 WRITEUP MEDIUM WRITEUP
Cerebrate 1.14 - Privilege Escalation
In Cerebrate 1.14, a vulnerability in UserSettingsController allows authenticated users to change user settings of other users.
CVSS 4.3
CVE-2023-48657 WRITEUP CRITICAL WRITEUP
MISP < 2.4.176 - SQL Injection via AppModel Filter Mishandling
An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php mishandles filters.
CVSS 9.8
CVE-2023-48659 WRITEUP CRITICAL WRITEUP
MISP < 2.4.176 - Cross-Site Scripting via Parameter Parsing
An issue was discovered in MISP before 2.4.176. app/Controller/AppController.php mishandles parameter parsing.
CVSS 9.8
CVE-2023-50918 WRITEUP CRITICAL WRITEUP
MISP <2.4.182 - Privilege Escalation
app/Controller/AuditLogsController.php in MISP before 2.4.182 mishandles ACLs for audit logs.
CVSS 9.8
CVE-2024-29858 WRITEUP CRITICAL WRITEUP
MISP < 2.4.187 - Arbitrary File Upload via Logo Upload
In MISP before 2.4.187, __uploadLogo in app/Controller/OrganisationsController.php does not properly check for a valid logo upload.
CVSS 9.8
CVE-2024-29859 WRITEUP CRITICAL WRITEUP
MISP <2.4.187 - File Upload Vulnerability
In MISP before 2.4.187, add_misp_export in app/Controller/EventsController.php does not properly check for a valid file upload.
CVSS 9.8
CVE-2024-45509 WRITEUP MEDIUM WRITEUP
MISP < 2.4.197 - Improper Access Control in BookmarksController
In MISP through 2.4.196, app/Controller/BookmarksController.php does not properly restrict access to bookmarks data in the case where the user is not an org admin.
CVSS 6.5
CVE-2024-57969 WRITEUP MEDIUM WRITEUP
MISP < 2.4.198 - Incorrect Authorization in Attribute Search
app/Model/Attribute.php in MISP before 2.4.198 ignores an ACL during a GUI attribute search.
CVSS 4.3
CVE-2024-58128 WRITEUP MEDIUM WRITEUP
MISP < 2.4.193 - Authenticated Stored Cross-Site Scripting via Menu Custom Right Link
In MISP before 2.4.193, menu_custom_right_link parameters can be set via the UI (i.e., without using the CLI) and thus attackers with admin privileges can conduct XSS attacks via a global menu link.
CVSS 5.5
CVE-2024-58129 WRITEUP MEDIUM WRITEUP
MISP < 2.4.193 - Authenticated Stored Cross-Site Scripting via menu_custom_right_link_html Parameter
In MISP before 2.4.193, menu_custom_right_link_html parameters can be set via the UI (i.e., without using the CLI) and thus attackers with admin privileges can conduct XSS attacks against every page.
CVSS 5.5
CVE-2024-58130 WRITEUP HIGH WRITEUP
MISP < 2.4.193 - Cross-Site Scripting via REST Endpoint Response
In app/Controller/Component/RestResponseComponent.php in MISP before 2.4.193, REST endpoints have a lack of sanitization for non-JSON responses.
CVSS 7.2
CVE-2025-66384 WRITEUP HIGH WRITEUP
MISP < 2.5.24 - Invalid File Upload Validation in EventsController
app/Controller/EventsController.php in MISP before 2.5.24 has invalid logic in checking for uploaded file validity, related to tmp_name.
CVSS 8.2