Vulnerabilities > Misp Project > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-30 | CVE-2023-37306 | Information Exposure Through an Error Message vulnerability in Misp-Project Malware Information Sharing Platform 2.4.172 MISP 2.4.172 mishandles different certificate file extensions in server sync. | 7.5 |
| 2016-09-03 | CVE-2015-5721 | Code Injection vulnerability in Misp-Project Malware Information Sharing Platform Malware Information Sharing Platform (MISP) before 2.3.90 allows remote attackers to conduct PHP object injection attacks via crafted serialized data, related to TemplatesController.php and populate_event_from_template_attributes.ctp. | 7.5 |