CVE-2022-27246

An issue was discovered in MISP before 2.4.156. An SVG org logo (which may contain JavaScript) is not forbidden by default. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt