CVE-2018-16639 (typesetter)

Typesetter 5.1 allows XSS via the index.php/Admin LABEL parameter during new page creation.
Source: NIST
CVE-2018-16639 (typesetter)