GHSA-5w2x-5q25-hmvpCriticalCVSS 9.8
An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php mishandles order clauses.
🔗 CVE IDs covered (1)
📋 Description
An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php mishandles order clauses.
🔗 References (5)
- https://nvd.nist.gov/vuln/detail/CVE-2023-48656
- https://github.com/MISP/MISP/commit/d6ad402b31547c95280a6d8320f8f87a8f609074
- https://github.com/MISP/MISP/compare/v2.4.175...v2.4.176
- https://zigrin.com/advisories/misp-blind-sql-injection-in-order-parameter
- https://github.com/advisories/GHSA-5w2x-5q25-hmvp