Misp · Misp · CVE-2018-8948
**Name of the Vulnerable Software and Affected Versions**
MISP versions prior to 2.4.89
**Description**
The issue is related to multiple XSS problems in the app/View/Events/resolved attributes.ctp file of MISP, which can be triggered by a malicious MISP module.
**Recommendations**
For versions prior to 2.4.89, update to version 2.4.89 or later to resolve the issue.