3 matches found
CVE-2021-20665
Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier Movable Type 7 Series, Movable Type Advanced 7 r.4705 and earlier Movable Type Advanced 7 Series, Movable Type Premium 1.39 and earlier, and Movable Type Premium Advanced 1.39 and...
CVE-2021-20665
CVE-2021-20665 is a cross-site scripting vulnerability in the Add asset screen of the Movable Type Contents field, affecting Movable Type 7 (r.4705 and earlier) and its variants (Advanced 7 Series, Premium 1.39 and earlier, Premium Advanced 1.39 and earlier). The root cause involves inadequate in...
JVN#66542874: Multiple cross-site scripting vulnerabilities in Movable Type
Movable Type provided by Six Apart Ltd. contains multiple cross-site scripting vulnerabilities listed below. Cross-site scripting vulnerability in Role authority setting screen CWE-79 - CVE-2021-20663 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base...