📦 Typesetter

TypesetterCMS v5.1 contains a Cross-Site Request Forgery (CSRF) vulnerability that allows attackers to trick authenticated users into performing unintended actions via crafted POST requests. This affe...

Typesetter CMS versions up to 5.1 contain a reflected XSS vulnerability in the Editing component where the images parameter is improperly sanitized. An authenticated attacker with editing privileges c...

This reflected XSS vulnerability in Typesetter CMS allows authenticated attackers to inject malicious scripts into the administrative interface's Tools Status page. When an authenticated administrator...

This reflected XSS vulnerability in Typesetter CMS allows authenticated attackers to inject malicious scripts into the administrative interface. When exploited, it enables arbitrary JavaScript executi...