CVE-2022-29529

Beschreibung

An issue was discovered in MISP before 2.4.158. There is stored XSS via the LinOTP login field.

Referenzen

• https://github.com/MISP/MISP/commit/9623de2f5cca011afc581d55cfa5ce87682894fd
• https://github.com/MISP/MISP/compare/v2.4.157...v2.4.158
• https://zigrin.com/advisories/misp-stored-xss-via-the-linotp-login-field/
• https://zigrin.com/cakephp-application-cybersecurity-research-protect-your-websi...
• https://github.com/MISP/MISP/commit/9623de2f5cca011afc581d55cfa5ce87682894fd
• https://github.com/MISP/MISP/compare/v2.4.157...v2.4.158
• https://zigrin.com/advisories/misp-stored-xss-via-the-linotp-login-field/
• https://zigrin.com/cakephp-application-cybersecurity-research-protect-your-websi...