Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
movabletype movable type open source vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-0845
Format string vulnerability in Movable Type Pro, Open Source, and Advanced prior to 5.2.13 and Pro and Advanced 6.0.x prior to 6.0.8 allows remote malicious users to execute arbitrary code via vectors related to localization of templates.
Sixapart Movabletype 6.0.2
Sixapart Movabletype 6.0.3
Sixapart Movabletype 6.0.4
Sixapart Movabletype 6.0.5
Sixapart Movabletype 6.0
Sixapart Movabletype 6.0.1
Sixapart Movabletype
Sixapart Movabletype 6.0.6
Sixapart Movabletype 6.0.7
NA
CVE-2015-1592
Movable Type Pro, Open Source, and Advanced prior to 5.2.12 and Pro and Advanced 6.0.x prior to 6.0.7 does not properly use the Perl Storable::thaw function, which allows remote malicious users to include and execute arbitrary local Perl files and possibly execute arbitrary code ...
Debian Debian Linux 7.0
Sixapart Movable Type
1 EDB exploit
NA
CVE-2012-0318
Multiple cross-site scripting (XSS) vulnerabilities in Movable Type prior to 4.38, 5.0x prior to 5.07, and 5.1x prior to 5.13 allow remote malicious users to inject arbitrary web script or HTML via vectors involving templates, a different issue than CVE-2012-1262.
Movabletype Movable Type Open Source 5.051
Movabletype Movable Type Open Source 5.05
Movabletype Movable Type Open Source 4.36
Movabletype Movable Type Open Source 4.35
Movabletype Movable Type Open Source 4.26
Movabletype Movable Type Open Source 4.25
Movabletype Movable Type Open Source 4.01
Movabletype Movable Type Open Source 4.0
Movabletype Movable Type Open Source 5.1
Movabletype Movable Type Open Source 5.04
Movabletype Movable Type Open Source 4.34
Movabletype Movable Type Open Source 4.33
Movabletype Movable Type Open Source 4.23
Movabletype Movable Type Open Source 4.2
Movabletype Movable Type Open Source 5.11
Movabletype Movable Type Open Source 5.06
Movabletype Movable Type Open Source
Movabletype Movable Type Open Source 4.361
Movabletype Movable Type Open Source 4.3
Movabletype Movable Type Open Source 4.261
Movabletype Movable Type Open Source 4.1
Movabletype Movable Type Open Source 5.12
NA
CVE-2012-0319
The file-management system in Movable Type prior to 4.38, 5.0x prior to 5.07, and 5.1x prior to 5.13 allows remote authenticated users to execute arbitrary commands by leveraging the file-upload feature, related to an "OS Command Injection" issue.
Movabletype Movable Type Open Source 5.031
Movabletype Movable Type Open Source 5.03
Movabletype Movable Type Open Source 4.33
Movabletype Movable Type Open Source 4.32
Movabletype Movable Type Open Source 4.2
Movabletype Movable Type Open Source 4.1
Movabletype Movable Type Open Source 4.0
Movabletype Movable Type Open Source 5.1
Movabletype Movable Type Open Source 5.04
Movabletype Movable Type Open Source 4.35
Movabletype Movable Type Open Source 4.34
Movabletype Movable Type Open Source 4.25
Movabletype Movable Type Open Source 4.23
Movabletype Movable Type Open Source 5.051
Movabletype Movable Type Open Source 5.05
Movabletype Movable Type Open Source 4.361
Movabletype Movable Type Open Source 4.36
Movabletype Movable Type Open Source 4.261
Movabletype Movable Type Open Source 4.26
Movabletype Movable Type Open Source 4.01
Movabletype Movable Type Open Source 5.12
Movabletype Movable Type Open Source 5.11
NA
CVE-2012-1262
Cross-site scripting (XSS) vulnerability in cgi-bin/mt/mt-wizard.cgi in Movable Type prior to 4.38, 5.0x prior to 5.07, and 5.1x prior to 5.13, when the product is incompletely installed, allows remote malicious users to inject arbitrary web script or HTML via the dbuser paramete...
Movabletype Movable Type Open Source 5.04
Movabletype Movable Type Open Source 5.031
Movabletype Movable Type Open Source 4.34
Movabletype Movable Type Open Source 4.33
Movabletype Movable Type Open Source 4.2
Movabletype Movable Type Open Source 4.1
Movabletype Movable Type Open Source 5.12
Movabletype Movable Type Open Source 5.11
Movabletype Movable Type Open Source 5.03
Movabletype Movable Type Open Source 5.02
Movabletype Movable Type Open Source 4.32
Movabletype Movable Type Open Source 4.31
Movabletype Movable Type Open Source 4.3
Movabletype Movable Type Open Source 4.0
Movabletype Movable Type Open Source 5.05
Movabletype Movable Type Open Source 5.1
Movabletype Movable Type Open Source 4.36
Movabletype Movable Type Open Source 4.35
Movabletype Movable Type Open Source 4.25
Movabletype Movable Type Open Source 4.23
Movabletype Movable Type Open Source 5.06
Movabletype Movable Type Open Source 5.051
NA
CVE-2012-1497
The default configuration of Movable Type prior to 4.38, 5.0x prior to 5.07, and 5.1x prior to 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory traversal attacks and read arbitrary files by leveraging the templ...
Movabletype Movable Type Open Source 5.11
Movabletype Movable Type Open Source 5.06
Movabletype Movable Type Open Source 5.02
Movabletype Movable Type Open Source
Movabletype Movable Type Open Source 4.361
Movabletype Movable Type Open Source 4.3
Movabletype Movable Type Open Source 4.261
Movabletype Movable Type Open Source 4.2
Movabletype Movable Type Open Source 4.1
Movabletype Movable Type Open Source 5.12
Movabletype Movable Type Open Source 5.031
Movabletype Movable Type Open Source 5.03
Movabletype Movable Type Open Source 4.32
Movabletype Movable Type Open Source 4.31
Movabletype Movable Type Open Source 4.0
Movabletype Movable Type Open Source 5.1
Movabletype Movable Type Open Source 5.04
Movabletype Movable Type Open Source 4.34
Movabletype Movable Type Open Source 4.33
Movabletype Movable Type Open Source 4.23
Movabletype Movable Type Open Source 5.051
Movabletype Movable Type Open Source 5.05
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started