CVE-2023-48658 Information

Description

An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php lacks a checkParam function for alphanumerics underscore dash period and space.

Reference

https://github.com/MISP/MISP/compare/v2.4.175…v2.4.176 https://github.com/MISP/MISP/commit/168621521b57b2437331174186f84a6aa3e71f0d