Keitai Kit for Movable Type vulnerable to OS command injection

Overview Keitai Kit for Movable Type contains an OS command injection vulnerability. Keitai Kit for Movable Type provided by ideaman's Inc. contains an OS command injection vulnerability CWE-78. CWE-78: Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection'...

Keitai Kit for Movable Type Operating System Command Injection Vulnerability

Six Apart Movable Type MT is a blogging system. keitai Kit is a security check plugin used in it. Keitai Kit for Movable Type is vulnerable, which can be exploited by remote attackers to execute arbitrary OS commands upon submission of a special request...

CVE-2016-1204: Keitai Kit for Movable Type command execution

Keitai Kit for Movable Type (the product provided by ideaman’s Inc.) contains an OS command injection vulnerability (CWE-78). The weakness allows a remote attacker to cause arbitrary OS command execution on the server, triggered by a crafted request. Exploitation in the wild has been confirmed pe...