CVE-2015-5719 (malware_information_sharing_platform)
app/Controller/TemplatesController.php in Malware Information Sharing Platform (MISP) before 2.3.92 does not properly restrict filenames under the tmp/files/ directory, which has unspecified impact and attack vectors.
Source: CVE-2015-5719 (malware_information_sharing_platform)