Kaerez

Name of the Vulnerable Software and Affected Versions: Documenso versions through 1.8.0 Documenso SaaS (Hosted) as of 2024-12-05 Description: The issue is related to the User Interface (UI) Misrepresentation of Critical Information in Documenso, allowing Content Spoofing. The displayed version does not show the layer flattened version. When printed, it will render the vulnerability only, and not all layers are flattened. This can be exploited to conduct spoofing attacks. Recommendations: For Documenso versions through 1.8.0: Update to a version that addresses the UI Misrepresentation issue to prevent Content Spoofing. For Documenso SaaS (Hosted) as of 2024-12-05: Contact the service provider for an update or patch that resolves the UI Misrepresentation vulnerability. As a temporary workaround, consider avoiding the use of the affected UI functionality until a patch is available. Restrict access to sensitive documents to minimize the risk of exploitation.