2 matches found
CVE-2018-20837
include/admin/Menu/Ajax.php in Typesetter 5.1 has index.php/Admin/Menu/Ajax?cmd=AddHidden title XSS...
CVE-2018-20837
Typesetter 5.1 contains a cross-site scripting (XSS) flaw in include/admin/Menu/Ajax.php. The description cites an input path: index.php/Admin/Menu/Ajax?cmd=AddHidden, with title XSS. Details on affected versions, impact, exploit method, and fixes are drawn from multiple sources; remediation spec...