EUVD-2019-15593

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Open redirect vulnerability in Movable Type allows phishing attacks via crafted URLs by remote attackers.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2019-6025	17 Mar 202410:16	–	circl
CNVD	Six Apart Movable Type Open Redirect Vulnerability	13 Nov 201900:00	–	cnvd
CVE	CVE-2019-6025	26 Dec 201915:16	–	cve
Cvelist	CVE-2019-6025	26 Dec 201915:16	–	cvelist
Japan Vulnerability Notes	JVN#65280626: Movable Type vulnerable to open redirect	13 Nov 201900:00	–	jvn
Japan Vulnerability Notes	Movable Type vulnerable to open redirect	13 Nov 201904:59	–	jvn
NVD	CVE-2019-6025	26 Dec 201916:15	–	nvd
OSV	CVE-2019-6025	26 Dec 201916:15	–	osv
Prion	Open redirect	26 Dec 201916:15	–	prion
RedhatCVE	CVE-2019-6025	22 May 202506:30	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "a4fc0a35-a10b-3d85-bec2-768cc4da5b4b",
        "vendor": {
          "name": "Six Apart Ltd"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "9b6aa88e-ac23-3e2c-8e22-0ec9696c6c59",
        "product": {
          "name": "Movable Type series"
        },
        "product_version": "Movable Type 7 r.4602 (7.1.3) and earlier (Movable Type 7), Movable Type 6.5.0 and 6.5.1 (Movable Type 6.5), Movable Type 6.3.9 and earlier (Movable Type 6.3.x, 6.2.x, 6.1.x, 6.0.x), Movable Type Advanced 7 r.4602 (7.1.3) and earlier (Movable Type 7), Movable Type Advanced 6.5.0 and 6.5.1 (Movable Type 6.5), Movable Type Advanced 6.3.9 and earlier (Movable Type 6.3.x, 6.2.x, 6.1.x, 6.0.x), Movable Type Premium 1.24 and earlier (Movable Type Premium), and Movable Type Premium (Advanced Edition) 1.24 and earlier (Movable Type Premium)"
      }
    ]
  }
]

Source	Link
movabletype	www.movabletype.org/news/2019/11/movable_type_r4603_v714_v652_and_v6310_released.html
jvn	www.jvn.jp/en/jp/JVN65280626/index.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

5.3Medium risk

Vulners AI Score5.3

CVSS 3.16.1

CVSS 25.8

EPSS0.0039