← Back to CVE List
CVE-2024-58129
In MISP before 2.4.193, menu_custom_right_link_html parameters can be set via the UI (i.e., without using the CLI) and thus attackers with admin privileges can conduct XSS attacks against every page.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt