3 matches found
CVE-2009-2481
mt-wizard.cgi in Six Apart Movable Type before 4.261, when global templates are not initialized, allows remote attackers to bypass access restrictions and 1 send e-mail to arbitrary addresses or 2 obtain sensitive information via unspecified vectors...
CVE-2009-2481
Summary: CVE-2009-2481 affects Movable Type prior to 4.261. When global templates are not initialized, mt-wizard.cgi allows remote bypass of access restrictions, enabling (1) sending email to arbitrary addresses and (2) obtaining sensitive information via unspecified vectors. Affected software: M...
CVE-2009-2481
mt-wizard.cgi in Six Apart Movable Type before 4.261, when global templates are not initialized, allows remote attackers to bypass access restrictions and 1 send e-mail to arbitrary addresses or 2 obtain sensitive information via unspecified vectors...