4 matches found
CVE-2020-35126
Typesetter CMS 5.x through 5.1 allows admins to conduct Site Title persistent XSS attacks via an Admin/Configuration URI. NOTE: the significance of this report is disputed because "admins are considered trustworthy...
CVE-2020-35126
creationtimestamp| type| source ---|---|--- 2020-12-11 07:35:06+00:00| seen| https://t.me/cibsecurity/19769 2020-12-11 07:38:07+00:00| seen| https://t.me/cibsecurity/19789 2020-12-11 08:25:19+00:00| seen| https://t.me/cibsecurity/19809 2020-12-11 09:25:16+00:00| seen| https://t.me/cibsecurity/198...
CVE-2020-35126
Typesetter CMS 5.x through 5.1 allows admins to conduct Site Title persistent XSS attacks via an Admin/Configuration URI. NOTE: the significance of this report is disputed because "admins are considered trustworthy...
CVE-2020-35126
Typesetter CMS 5.x–5.1 is affected by a Site Title persistent XSS via the Admin/Configuration URI. The vulnerability stems from the Admin/Configuration URI handling of the Site Title, enabling an attacker with admin access to persistently inject XSS content. No explicit fixed version is listed in...