CVE-2019-10254

NONE EPSS 54.3%
Published Mar 28, 20197y ago ยท Modified Jun 22, 20261w ago
Find Similar
Published Mar 28, 2019 7y ago
Last Modified Jun 22, 2026 1w ago

Description

In MISP before 2.4.105, the app/View/Layouts/default.ctp default layout template has a Reflected XSS vulnerability.

Threat Intelligence

EPSS Exploit Probability
54.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
misp-projectmisp* <2.4.105

References 2

  • github.com https://github.com/MISP/MISP/commit/586cca384be6710b03e14bcbeb7588c1772604ec
    PatchThird Party Advisory
  • github.com https://github.com/MISP/MISP/compare/f493659...0e4f66e
    PatchThird Party Advisory

Remediation

  • github.com https://github.com/MISP/MISP/commit/586cca384be6710b03e14bcbeb7588c1772604ec
    PatchThird Party Advisory
  • github.com https://github.com/MISP/MISP/compare/f493659...0e4f66e
    PatchThird Party Advisory