Multiple cross-site scripting (XSS) vulnerabilities in the template-creation feature in Malware Information Sharing Platform (MISP) before 2.3.90 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) add.ctp, (2) edit.ctp, and (3) ajaxification.js.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2016-09-03T20:00:00
Updated: 2024-08-06T06:59:04.092Z
Reserved: 2015-08-03T00:00:00
Link: CVE-2015-5720
Vulnrichment
No data.
NVD
Status : Modified
Published: 2016-09-03T20:59:01.483
Modified: 2024-11-21T02:33:42.470
Link: CVE-2015-5720
Redhat
No data.