Movable Type mt-comments.cgi static Parameter XSS

The version of Movable Type running on the remote host is affected by a cross-site scripting vulnerability because the application fails to properly sanitize input to the 'static' parameter of the 'mt-comments.cgi' script. An attacker may be able to leverage this to inject arbitrary HTML and scri...