Lucene search
K

823 matches found

Nuclei
Nuclei
added 4 days ago75 views

MovableType - Remote Command Injection

MovableType 5002 and earlier Movable Type Advanced 7 Series, Movable Type Advanced 6.8. 2 and earlier Movable Type Advanced 6 Series, Movable Type Premium 1.46 and earlier, and Movable Type Premium Advanced 1.46 and earlier allow remote attackers to execute arbitrary OS commands via unspecified...

9.8CVSS7.5AI score0.88144EPSS
Exploits11References5
RedhatCVE
RedhatCVE
added 2026/06/05 7:31 p.m.12 views

CVE-2026-33088

Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arbitrary SQL statement...

9.8CVSS7.7AI score0.00349EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:24 p.m.10 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.4AI score0.00249EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:23 p.m.11 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS8.2AI score0.00468EPSS
Exploits0References1
NVD
NVD
added 2026/05/20 7:16 a.m.11 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS0.00249EPSS
Exploits0References3
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2026/05/20 6:21 a.m.17 views

Movable Type vulnerable to missing authorization

Overview Movable Type provided by Six Apart Ltd. contains the following vulnerability. Missing authorization CWE-862 - CVE-2026-44392 Six Apart Ltd. reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and Six Apart Ltd. coordinated under the Information...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: “sched/fair: Make sure to try to detach at least one movable task” has been reverted. This reversion is associated with the commit b0defa7ae03ecf91b8bfd10ede430cff12fcbd06. The patch b0defa7ae03ec changed the load balancing logic...

5.5CVSS6.3AI score0.00166EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/20 5:28 a.m.10 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/20 5:28 a.m.10 views

EUVD-2026-31066

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/20 5:28 a.m.7 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References4Affected Software4
Cvelist
Cvelist
added 2026/05/20 5:28 a.m.38 views

CVE-2026-44392

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS0.00249EPSS
Exploits0References3
CVE
CVE
added 2026/05/20 5:28 a.m.27 views

CVE-2026-44392

Technical details (affected components, root cause, impacted versions, or exploit information) are not provided in the supplied documents. Please monitor official advisories and CVE records for updates.

5.3CVSS5.8AI score0.00249EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/20 12:0 a.m.8 views

Movable Type 安全漏洞

Movable Type is a content management system developed by Movable Type Inc. There is a security vulnerability in Movable Type, which stems from a lack of authorization verification. This vulnerability may allow users without administrator privileges to log in and perform unexpected updates...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/20 12:0 a.m.11 views

PT-2026-42108

Missing authorization vulnerability exists in Movable Type. Under certain conditions, when a user without administrator privileges signs in to the product, unintended update processing may be executed...

5.3CVSS5.8AI score0.00249EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/08 9:31 a.m.5 views

EUVD-2026-20133

Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arbitrary SQL statement...

7.3CVSS7.3AI score0.00349EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/08 9:31 a.m.4 views

EUVD-2026-20132

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00468EPSS
Exploits0References4
NVD
NVD
added 2026/04/08 9:16 a.m.13 views

CVE-2026-33088

Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arbitrary SQL statement...

9.8CVSS0.00349EPSS
Exploits0References3
NVD
NVD
added 2026/04/08 9:16 a.m.5 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS0.00468EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/08 8:52 a.m.16 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS0.00468EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/08 8:52 a.m.2 views

CVE-2026-25776

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script...

9.8CVSS7.5AI score0.00468EPSS
Exploits0References3
Rows per page
Query Builder