CSRF in Misp Misp-modules

CVE-2026-44364

MISP modules are autonomous modules that can be used to extend MISP for new services. In 3.0.7 and earlier, a Cross-Site Request Forgery vulnerability in the MISP Modules website allowed an attacker to cause an authenticated user to submit…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.000 (0.7th percentile) — read the EPSS interpretation.

Affected products

Misp Misp-modules — versions <= 3.0.7

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

References

security-advisories@github.com (x_refsource_CONFIRM)