Persistent XSS Vulnerability in MISP 2.4.122 Sighting Popover Tool

Persistent XSS Vulnerability in MISP 2.4.122 Sighting Popover Tool

CVE-2020-10247 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

MISP 2.4.122 has Persistent XSS in the sighting popover tool. This is related to app/View/Elements/Events/View/sighting_field.ctp.

Learn more about our Web Application Penetration Testing UK.