AI Score
Confidence
High
EPSS
Percentile
72.7%
Cross-site scripting (XSS) vulnerability in the A-Form PC and PC/Mobile before 3.1 plug-ins for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-2676.
www.ark-web.jp/movabletype/a-form/docs/security_patch.html
www.ark-web.jp/movabletype/blog/2011/09/aform_update110927.html
exchange.xforce.ibmcloud.com/vulnerabilities/70405