HIGH
typemill
CVE published 2026-06-17
CVE-2026-49133
CVE-2026-49133 is a high-severity path traversal vulnerability in Typemill before 2.24.0. Authenticated attackers with Author-level privileges can read arbitrary files outside the content directory by manipulating the path query parameter. This vulnerability, with a CVSS score of 7.1, was publicly disclosed on June 17, 2026. The vulnerability was patched in version 2.24.2. Users should update to the lates [truncated]