CVE-2023-28606 Information

Description

js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips.

Reference

https://github.com/MISP/MISP/compare/v2.4.168…v2.4.169 https://github.com/MISP/MISP/commit/30255b8d683df4ec54f856282b3bde9106d5ae1a