CVE-2021-20663

🗓️ 05 Mar 2021 09:20:20Reported by jpcertType

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 142 Views

CVE-2021-20663 Cross-site scripting vulnerability in Movable Typ

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2021-20663	5 Mar 202112:47	–	circl
CNNVD	Six Apart Movable Type 跨站脚本漏洞	24 Feb 202100:00	–	cnnvd
CNVD	Six Apart Movable Type Cross-Site Scripting Vulnerability (CNVD-2022-22654)	26 Feb 202100:00	–	cnvd
Cvelist	CVE-2021-20663	5 Mar 202109:20	–	cvelist
EUVD	EUVD-2021-8081	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#66542874: Multiple cross-site scripting vulnerabilities in Movable Type	24 Feb 202100:00	–	jvn
Japan Vulnerability Notes	Multiple cross-site scripting vulnerabilities in Movable Type	24 Feb 202106:20	–	jvn
NVD	CVE-2021-20663	5 Mar 202110:15	–	nvd
OSV	CVE-2021-20663	5 Mar 202110:15	–	osv
Prion	Cross site scripting	5 Mar 202110:15	–	prion

NVD

Node

movabletype movable_typeRange≤6.7.5

movabletype movable_typeRange7.0000–7.4705

movabletype movable_type_advancedRange≤7.4705

movabletype movable_type_premiumRange≤1.39

movabletype movable_type_premium_advancedRange≤1.39

[
  {
    "product": "Movable Type",
    "vendor": "Six Apart Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Advanced 7 Series), Movable Type 6.7.5 and earlier (Movable Type 6.7 Series), Movable Type Premium 1.39 and earlier, and Movable Type Premium Advanced 1.39 and earlier"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN66542874/index.html
movabletype	www.movabletype.org/news/2021/02/mt-760-676-released.html

21 Nov 2024 05:46Current

6.1Medium risk

Vulners AI Score6.1

CVSS 24.3

CVSS 3.16.1

EPSS0.00347

CWE-79