Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sixapart movable type 5.2.6 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-2184
Movable Type prior to 5.2.6 does not properly use the Storable::thaw function, which allows remote malicious users to execute arbitrary code via the comment_state parameter.
Sixapart Movable Type
NA
CVE-2014-9057
SQL injection vulnerability in the XML-RPC interface in Movable Type prior to 5.18, 5.2.x prior to 5.2.11, and 6.x prior to 6.0.6 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Debian Debian Linux 7.0
Sixapart Movable Type 6.0.5
Sixapart Movable Type 6.0
Sixapart Movable Type 5.2.2
Sixapart Movable Type 5.2.4
Sixapart Movable Type 5.2.9
Sixapart Movable Type
Sixapart Movable Type 6.0.4
Sixapart Movable Type 6.0.3
Sixapart Movable Type 6.0.2
Sixapart Movable Type 6.0.1
Sixapart Movable Type 5.2.5
Sixapart Movable Type 5.2.6
Sixapart Movable Type 5.2.7
Sixapart Movable Type 5.2.8
Sixapart Movable Type 5.2
Sixapart Movable Type 5.2.3
Sixapart Movable Type 5.2.10
NA
CVE-2014-0977
Cross-site scripting (XSS) vulnerability in the Rich Text Editor in Movable Type 5.0x, 5.1x prior to 5.161, 5.2.x prior to 5.2.9, and 6.0.x prior to 6.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sixapart Movabletype 5.11
Sixapart Movabletype 5.12
Sixapart Movabletype 5.2.7
Sixapart Movabletype 6.0
Sixapart Movabletype 5.15
Sixapart Movabletype 5.2
Sixapart Movabletype 5.2.2
Sixapart Movabletype 5.02
Sixapart Movabletype 5.01
Sixapart Movabletype 5.04
Sixapart Movabletype 5.2.3
Sixapart Movabletype 5.2.6
Sixapart Movabletype 5.0
Sixapart Movabletype 5.13
Sixapart Movabletype 5.14
Sixapart Movabletype 5.031
Sixapart Movabletype 5.03
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started