misp-project security advisories

2 threat alerts tracking vulnerabilities and security advisories that affect misp-project products.

Vulnios monitors misp-project CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent misp-project security news in one place, or click into an individual alert for full detail.

Critical Vulnerability: CVE-2015-5719 — misp-project — malware_information_sharing_platform
app/Controller/TemplatesController.php in Malware Information Sharing Platform (MISP) before 2.3.92 does not properly restrict filenames under the tmp/files/ directory, which has unspecified impact an
criticalCVE-2015-5719
Critical Vulnerability: CVE-2015-5721 — misp-project — malware_information_sharing_platform
Malware Information Sharing Platform (MISP) before 2.3.90 allows remote attackers to conduct PHP object injection attacks via crafted serialized data, related to TemplatesController.php and populate_e
criticalCVE-2015-5721

Track misp-project exposure across your environment

Vulnios automatically cross-references your asset inventory against new misp-project CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.

Start a free scan

misp-project security advisories

Critical Vulnerability: CVE-2015-5719 — misp-project — malware_information_sharing_platform

Critical Vulnerability: CVE-2015-5721 — misp-project — malware_information_sharing_platform

Track misp-project exposure across your environment