3 matches found
CVE-2025-53522
CVE-2025-53522 affects Movable Type and related editions, caused by use of a less trusted source (CWE-348). A remote unauthenticated attacker could trigger a tampered password-reset email. Documented impact: password reset email may be forged by exploiting the trusted source weakness. Public disc...
PT-2025-33902 · Six Apart · Movable Type
Name of the Vulnerable Software and Affected Versions: Movable Type affected versions not specified Description: Movable Type contains an issue with the use of less trusted sources. A remote, unauthenticated attacker may exploit this to send a tampered email for password reset purposes...
Liferay Portal和Liferay DXP 安全漏洞
Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...