Vulnerabilities > Typesettercms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-25 | CVE-2022-25523 | Cross-Site Request Forgery (CSRF) vulnerability in Typesettercms Typesetter 5.1 TypesetterCMS v5.1 was discovered to contain a Cross-Site Request Forgery (CSRF) which is exploited via a crafted POST request. | 8.8 |
| 2020-09-19 | CVE-2020-25790 | Unrestricted Upload of File with Dangerous Type vulnerability in Typesettercms Typesetter 5.0/5.0.1/5.1 Typesetter CMS 5.x through 5.1 allows admins to upload and execute arbitrary PHP code via a .php file inside a ZIP archive. | 7.2 |
| 2018-02-12 | CVE-2018-6889 | Code Injection vulnerability in Typesettercms Typesetter 5.1 An issue was discovered in Typesetter 5.1. | 8.8 |
| 2018-02-12 | CVE-2018-6888 | Cross-Site Request Forgery (CSRF) vulnerability in Typesettercms Typesetter 5.1 An issue was discovered in Typesetter 5.1. | 8.0 |