CVE-2023-48656

CVE-2023-48656

EPSS 0.9%

An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php mishandles order clauses.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/MISP/MISP/commit/d6ad402b31547c95280a6d8320f8f87a8f609074 https://github.com/MISP/MISP/compare/v2.4.175...v2.4.176 https://zigrin.com/advisories/misp-blind-sql-injection-in-order-parameter/