Vulnerability url is now configurable (Fix #153).

A global configuration CyDefSig.cveurl added to specify the URL
where to reference a CVE/NVD number. CyDefSig.cveurl is optional
and if not existing fallbacks to the original google.com URL.

app/Config/bootstrap.default.php

@@ -136,6 +136,8 @@ Configure::write('SecureAuth.expire', 300);            // the time-window for th
 
 Configure::write('CyDefSIG.dns', 'false');				// there is a nameserver available to do resolution.
 
+Configure::write('CyDefSig.cveurl', 'http://web.nvd.nist.gov/view/vuln/detail?vulnId='); 	// Default URL for NVD/CVE reference.
+
 // The following 3 fields are optional
 
 //Configure::write('MISP.welcome_text_top', 'Welcome to the Organisation community\'s');     // used in Events::login before the MISP logo

app/View/Events/view.ctp

@@ -213,7 +213,12 @@ if (!empty($event['Attribute'])):?>
 				echo h($filenameHash[0]);
 				if (isset($filenameHash[1])) echo ' | ' . $filenameHash[1];
 			} elseif ('vulnerability' == $attribute['type']) {
-				echo $this->Html->link(h($sigDisplay), 'http://www.google.com/search?q=' . h($sigDisplay), array('target' => '_blank'));
+				if (! is_null(Configure::read('CyDefSig.cveurl'))) {
+					$cveUrl = Configure::read('CyDefSig.cveurl');
+				} else {
+					$cveUrl = "http://www.google.com/search?q=";
+				}
+				echo $this->Html->link(h($sigDisplay), h($cveUrl) . h($sigDisplay), array('target' => '_blank'));
 			} elseif ('link' == $attribute['type']) {
 				echo $this->Html->link(h($sigDisplay), h($sigDisplay));
 			} else {