CVE-2009-2481

2009-07-16T16:30:00
ID CVE-2009-2481
Type cve
Reporter cve@mitre.org
Modified 2017-08-17T01:30:00

Description

mt-wizard.cgi in Six Apart Movable Type before 4.261, when global templates are not initialized, allows remote attackers to bypass access restrictions and (1) send e-mail to arbitrary addresses or (2) obtain sensitive information via unspecified vectors.