3 matches found
CVE-2025-71166
creationtimestamp| type| source ---|---|--- 2026-01-14 20:18:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcfvbvg5hc2q...
CVE-2025-71166
Typesetter CMS versions up to and including 5.1 contain a reflected cross-site scripting XSS vulnerability in the administrative interface within the Tools Status move message handling. The path parameter is reflected into the HTML output without proper output encoding in...
CVE-2025-71166 Typesetter CMS Reflected XSS via Move Message Handling
Typesetter CMS versions up to and including 5.1 contain a reflected cross-site scripting XSS vulnerability in the administrative interface within the Tools Status move message handling. The path parameter is reflected into the HTML output without proper output encoding in...