7 matches found
CVE-2021-20665
Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier Movable Type 7 Series, Movable Type Advanced 7 r.4705 and earlier Movable Type Advanced 7 Series, Movable Type Premium 1.39 and earlier, and Movable Type Premium Advanced 1.39 and...
Screenly screenly-ose 跨站脚本漏洞
Screenly-ose is an application software. screenly OSE - Digital Signage for Raspberry Pi. A security vulnerability exists in all versions of Screenly screenly-ose, which arises from manipulating a "URL" field on the "Add Asset" page, which could allow a remote malicious user to execute arbitrary...
CVE-2021-20665
Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier Movable Type 7 Series, Movable Type Advanced 7 r.4705 and earlier Movable Type Advanced 7 Series, Movable Type Premium 1.39 and earlier, and Movable Type Premium Advanced 1.39 and...
CVE-2021-20665
Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier Movable Type 7 Series, Movable Type Advanced 7 r.4705 and earlier Movable Type Advanced 7 Series, Movable Type Premium 1.39 and earlier, and Movable Type Premium Advanced 1.39 and...
Cross site scripting
Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier Movable Type 7 Series, Movable Type Advanced 7 r.4705 and earlier Movable Type Advanced 7 Series, Movable Type Premium 1.39 and earlier, and Movable Type Premium Advanced 1.39 and...
Multiple cross-site scripting vulnerabilities in Movable Type
Overview Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Role authority setting screen CWE-79 - CVE-2021-20663 Cross-site scripting vulnerability in Asset registration screen CWE-79 - CVE-2021-20664...
JVN#66542874: Multiple cross-site scripting vulnerabilities in Movable Type
Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Role authority setting screen CWE-79 - CVE-2021-20663 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base...