Lucene search
HistoryApr 02, 2012 - 6:55 p.m.
CVE-2011-5084
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.5%
Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected configurations
Node
sixapartmovable_typeMatch4.0
ORsixapartmovable_typeMatch4.0beta
ORsixapartmovable_typeMatch4.0beta2
ORsixapartmovable_typeMatch4.0beta3
ORsixapartmovable_typeMatch4.0beta4
ORsixapartmovable_typeMatch4.0beta5
ORsixapartmovable_typeMatch4.0beta6
ORsixapartmovable_typeMatch4.0beta7
ORsixapartmovable_typeMatch4.0rc1
ORsixapartmovable_typeMatch4.0rc2
ORsixapartmovable_typeMatch4.0rc3
ORsixapartmovable_typeMatch4.01
ORsixapartmovable_typeMatch4.1
ORsixapartmovable_typeMatch4.1beta
ORsixapartmovable_typeMatch4.01beta
ORsixapartmovable_typeMatch4.1beta2
ORsixapartmovable_typeMatch4.01beta2
ORsixapartmovable_typeMatch4.1rc1
ORsixapartmovable_typeMatch4.01rc1
ORsixapartmovable_typeMatch4.2
ORsixapartmovable_typeMatch4.2rc2
ORsixapartmovable_typeMatch4.2rc4
ORsixapartmovable_typeMatch4.2rc5
ORsixapartmovable_typeMatch4.12
ORsixapartmovable_typeMatch4.15beta1
ORsixapartmovable_typeMatch4.15beta3
ORsixapartmovable_typeMatch4.15beta4
ORsixapartmovable_typeMatch4.21
ORsixapartmovable_typeMatch4.22
ORsixapartmovable_typeMatch4.23
ORsixapartmovable_typeMatch4.24
ORsixapartmovable_typeMatch4.25
ORsixapartmovable_typeMatch4.26
ORsixapartmovable_typeMatch4.27
ORsixapartmovable_typeMatch4.28
ORsixapartmovable_typeMatch4.29
ORsixapartmovable_typeMatch4.35
ORsixapartmovable_typeMatch4.36
ORsixapartmovable_typeMatch4.261
ORsixapartmovable_typeMatch4.291
ORsixapartmovable_typeMatch4.292
Node
sixapartmovable_typeMatch5.0
ORsixapartmovable_typeMatch5.0beta1
ORsixapartmovable_typeMatch5.0beta2
ORsixapartmovable_typeMatch5.0beta3
ORsixapartmovable_typeMatch5.0beta4
ORsixapartmovable_typeMatch5.0rc1
ORsixapartmovable_typeMatch5.0rc2
ORsixapartmovable_typeMatch5.0rc3
ORsixapartmovable_typeMatch5.01
ORsixapartmovable_typeMatch5.02
ORsixapartmovable_typeMatch5.03
ORsixapartmovable_typeMatch5.04
ORsixapartmovable_typeMatch5.05
ORsixapartmovable_typeMatch5.031
Related
cve
cve
CVE-2011-5084
2012-04-02 18:55:00
ubuntucve
ubuntucve
CVE-2011-5084
2012-04-02 00:00:00
prion
prion
Cross site scripting
2012-04-02 18:55:00
cvelist
cvelist
CVE-2011-5084
2012-04-02 18:00:00
nessus
nessus
Debian DSA-2423-1 : movabletype-opensource - several vulnerabilities
2012-03-05 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-2423-1)
2012-03-12 00:00:00
Debian Security Advisory DSA 2423-1 (movabletype-opensource)
2012-03-12 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
48.5%
Related for NVD:CVE-2011-5084