Headline
CVE-2023-24026: fix: [security] XSS in eventgraph preview payload · MISP/MISP@a46f794
In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload.
@@ -636,7 +636,7 @@ class EventGraph {
btn_plot.data('network-preview’, preview);
btn_plot.popover({
container: 'body’,
content: function() { return ‘<img style="width: 500px; height: 150px;" src="’ + $(this).data(‘network-preview’) + '" />’; },
content: function() { return ‘<img style="width: 500px; height: 150px;" src="’ + $(‘<div>’).text($(this).data(‘network-preview’)).html() + '" />’; },
placement: 'right’,
trigger: 'hover’,
template: '<div class="popover" role="tooltip"><div class="arrow"></div><h3 class="popover-title"></h3><div class="popover-content" style="width: 500px; height: 150px;"></div></div>’,
@@ -2002,7 +2002,7 @@ function reset_graph_history() {
btn_plot.data('network-preview’, preview);
btn_plot.popover({
container: 'body’,
content: function() { return ‘<img style="width: 500px; height: 150px;" src="’ + $(this).data(‘network-preview’) + '" />’; },
content: function() { return ‘<img style="width: 500px; height: 150px;" src="’ + $(‘<div>’).text($(this).data(‘network-preview’)).html() + '" />’; },
placement: 'right’,
trigger: 'hover’,
template: '<div class="popover" role="tooltip"><div class="arrow"></div><h3 class="popover-title"></h3><div class="popover-content" style="width: 500px; height: 150px;"></div></div>’,