{"id":"CVE-2024-52271","details":"User Interface (UI) Misrepresentation of Critical Information vulnerability in Documenso allows Content Spoofing.Displayed version does not show the layer flattened version, once download, If printed (e.g. via Google Chrome -\u003e Examine the print preview): Will render the vulnerability only, not all layers are flattened.\n\n\nThis issue affects Documenso: through 1.8.0, \u003e1.8.0 and Documenso SaaS (Hosted) as of 2024-12-05.","modified":"2026-04-10T05:20:30.538203Z","published":"2024-12-05T14:15:21.417Z","references":[{"type":"WEB","url":"https://www.documenso.com/"},{"type":"ADVISORY","url":"https://www.vulsec.org/advisories"},{"type":"REPORT","url":"https://github.com/documenso/documenso/issues/1512"},{"type":"PACKAGE","url":"https://github.com/documenso/documenso"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/documenso/documenso","events":[{"introduced":"0"},{"last_affected":"0eff336175f5c112a6e7c952c15f1e2a6a255e48"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.8.0"}]}}],"versions":["0.9-developer-preview","before-prettier","v0.9","v1.2.0","v1.2.1","v1.2.2","v1.2.3","v1.3.0","v1.3.0-rc.0","v1.3.0-rc.1","v1.3.0-rc.2","v1.3.1","v1.3.1-rc.0","v1.3.1-rc.1","v1.3.1-rc.2","v1.3.2-rc.0","v1.4.0","v1.4.0-rc.0","v1.5.0","v1.5.0-rc.0","v1.5.0-rc.1","v1.5.0-rc.2","v1.5.0-rc.3","v1.5.0-rc.4","v1.5.0-rc.5","v1.5.0-rc.6","v1.5.1","v1.5.1-rc.0","v1.5.2","v1.5.2-rc.0","v1.5.2-rc.1","v1.5.2-rc.2","v1.5.2-rc.3","v1.5.2-rc.4","v1.5.2-rc.5","v1.5.2-rc.6","v1.5.2-rc.7","v1.5.2-rc.8","v1.5.3","v1.5.3-rc.0","v1.5.3-rc.1","v1.5.4","v1.5.4-rc.0","v1.5.4-rc.1","v1.5.4-rc.2","v1.5.4-rc.3","v1.5.4-rc.4","v1.5.4-rc.5","v1.5.5","v1.5.5-rc.0","v1.5.5-rc.1","v1.5.5-rc.2","v1.5.5-rc.3","v1.5.5-rc.4","v1.5.5-rc.5","v1.5.5-rc.6","v1.5.5-rc.7","v1.5.5-rc.8","v1.5.6","v1.5.6-rc.0","v1.5.6-rc.1","v1.5.6-rc.2","v1.5.6-rc.3","v1.5.6-rc.4","v1.6.0","v1.6.0-rc.0","v1.6.0-rc.1","v1.6.0-rc.2","v1.6.0-rc.3","v1.6.1","v1.6.1-rc.0","v1.6.1-rc.1","v1.7.0","v1.7.0-rc.0","v1.7.0-rc.1","v1.7.0-rc.2","v1.7.0-rc.3","v1.7.0-rc.4","v1.7.0-rc.5","v1.7.1","v1.7.1-rc.0","v1.7.1-rc.1","v1.7.1-rc.2","v1.7.1-rc.3","v1.7.2","v1.7.2-rc.0","v1.7.2-rc.1","v1.7.2-rc.2","v1.7.2-rc.3","v1.7.2-rc.4","v1.8.0","v1.8.0-rc.1","v1.8.0-rc.2","v1.8.0-rc.3","v1.8.0-rc.4"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-52271.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V4","score":"CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:H/VA:N/SC:N/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Red"}]}