Movabletype@5.02 Security Vulnerabilities and Issues — Movabletype@5.02 CVE List

Lucene search

SixapartMovabletype5.02

5 matches found

CVE•added 2014/01/10 5:55 p.m.•44 views

CVE-2014-0977

Cross-site scripting (XSS) vulnerability in the Rich Text Editor in Movable Type 5.0x, 5.1x before 5.161, 5.2.x before 5.2.9, and 6.0.x before 6.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.6AI score0.00604EPSS

CVE•added 2010/12/09 8:0 p.m.•42 views

CVE-2010-4511

Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 has unknown impact and attack vectors related to the "dynamic publishing error message."

10CVSS6.6AI score0.00487EPSS

CVE•added 2010/12/09 8:0 p.m.•40 views

CVE-2010-4509

Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 and 5.x before 5.04 have unknown impact and attack vectors related to the (1) mt:AssetProperty and (2) mt:EntryFlag tags.

10CVSS6.9AI score0.00458EPSS

CVE•added 2010/12/09 8:0 p.m.•37 views

CVE-2010-3922

SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

7.5CVSS8.6AI score0.00706EPSS

CVE•added 2010/12/09 8:0 p.m.•32 views

CVE-2010-3921

Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00475EPSS