CVE-2023-45746

🗓️ 30 Oct 2023 04:57:43Reported by jpcertType

CVE-2023-45746: Cross-site scripting vulnerability in Movable Type serie

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2023-45746	30 Oct 202315:30	–	circl
CNNVD	Six Apart Movable Type Security Vulnerability	25 Oct 202300:00	–	cnnvd
Cvelist	CVE-2023-45746	30 Oct 202304:57	–	cvelist
EUVD	EUVD-2023-50035	3 Oct 202520:07	–	euvd
Japan Vulnerability Notes	JVN#39139884: Movable Type vulnerable to cross-site scripting	25 Oct 202300:00	–	jvn
Japan Vulnerability Notes	Movable Type vulnerable to cross-site scripting	25 Oct 202306:18	–	jvn
NVD	CVE-2023-45746	30 Oct 202305:15	–	nvd
OSV	CVE-2023-45746	30 Oct 202305:15	–	osv
Prion	Cross site scripting	30 Oct 202305:15	–	prion
Positive Technologies	PT-2023-29662 · Unknown · Movable Type Advanced +5	30 Oct 202300:00	–	ptsecurity

NVD

Vulners

Node

sixapart movable_typeRange<7.902.0

Node

sixapart movable_typeRange<7.902.0advanced

Node

sixapart movable_typeRange<1.59premium

Node

sixapart movable_typeRange<1.59premium_advanced

Node

sixapart movable_typeRange<7.902.0aws

Node

sixapart movable_typeRange<1.59advanced_aws

[
  {
    "vendor": "Six Apart Ltd.",
    "product": "Movable Type 7 (Movable Type 7 Series)",
    "versions": [
      {
        "version": "r.5405 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Six Apart Ltd.",
    "product": "Movable Type Advanced 7 (Movable Type 7 Series)",
    "versions": [
      {
        "version": "r.5405 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Six Apart Ltd.",
    "product": "Movable Type Premium",
    "versions": [
      {
        "version": "1.58 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Six Apart Ltd.",
    "product": "Movable Type Premium Advanced",
    "versions": [
      {
        "version": "1.58 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Six Apart Ltd.",
    "product": "Movable Type Cloud Edition (Version 7)",
    "versions": [
      {
        "version": "r.5405 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Six Apart Ltd.",
    "product": "Movable Type Premium Cloud Edition",
    "versions": [
      {
        "version": "1.58 and earlier",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN39139884/
movabletype	www.movabletype.org/news/2023/10/mt-79020-released.html

21 Nov 2024 08:27Current

5.2Medium risk

Vulners AI Score5.2

CVSS 3.15.4

EPSS0.00109

SSVC

CWE-79