Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sixapart movable type 6.0 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-6025
Open redirect vulnerability in Movable Type series Movable Type 7 r.4602 (7.1.3) and previous versions (Movable Type 7), Movable Type 6.5.0 and 6.5.1 (Movable Type 6.5), Movable Type 6.3.9 and previous versions (Movable Type 6.3.x, 6.2.x, 6.1.x, 6.0.x), Movable Type Advanced 7 r....
Sixapart Movable Type
Sixapart Movable Type 6.5.0
Sixapart Movable Type 6.5.1
9.8
CVSSv3
CVE-2016-5742
SQL injection vulnerability in the XML-RPC interface in Movable Type Pro and Advanced 6.x prior to 6.1.3 and 6.2.x prior to 6.2.6 and Movable Type Open Source 5.2.13 and previous versions allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Sixapart Movable Type 6.1.1
Sixapart Movable Type 6.1.0
Sixapart Movable Type 6.0.8
Sixapart Movable Type 6.0.1
Sixapart Movable Type 6.0
Sixapart Movable Type 6.0.7
Sixapart Movable Type 6.2.4
Sixapart Movable Type 6.2.2
Sixapart Movable Type 6.0.5
Sixapart Movable Type 6.0.4
Sixapart Movable Type 6.2.0
Sixapart Movable Type 6.1.2
Sixapart Movable Type 6.0.3
Sixapart Movable Type 6.0.2
Sixapart Movable Type Open Source
Sixapart Movable Type 6.0.6
NA
CVE-2015-0845
Format string vulnerability in Movable Type Pro, Open Source, and Advanced prior to 5.2.13 and Pro and Advanced 6.0.x prior to 6.0.8 allows remote malicious users to execute arbitrary code via vectors related to localization of templates.
Sixapart Movabletype 6.0.2
Sixapart Movabletype 6.0.3
Sixapart Movabletype 6.0.4
Sixapart Movabletype 6.0.5
Sixapart Movabletype 6.0
Sixapart Movabletype 6.0.1
Sixapart Movabletype
Sixapart Movabletype 6.0.6
Sixapart Movabletype 6.0.7
NA
CVE-2015-1592
Movable Type Pro, Open Source, and Advanced prior to 5.2.12 and Pro and Advanced 6.0.x prior to 6.0.7 does not properly use the Perl Storable::thaw function, which allows remote malicious users to include and execute arbitrary local Perl files and possibly execute arbitrary code ...
Debian Debian Linux 7.0
Sixapart Movable Type
1 EDB exploit
NA
CVE-2014-9057
SQL injection vulnerability in the XML-RPC interface in Movable Type prior to 5.18, 5.2.x prior to 5.2.11, and 6.x prior to 6.0.6 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Debian Debian Linux 7.0
Sixapart Movable Type 6.0.5
Sixapart Movable Type 6.0
Sixapart Movable Type 5.2.2
Sixapart Movable Type 5.2.4
Sixapart Movable Type 5.2.9
Sixapart Movable Type
Sixapart Movable Type 6.0.4
Sixapart Movable Type 6.0.3
Sixapart Movable Type 6.0.2
Sixapart Movable Type 6.0.1
Sixapart Movable Type 5.2.5
Sixapart Movable Type 5.2.6
Sixapart Movable Type 5.2.7
Sixapart Movable Type 5.2.8
Sixapart Movable Type 5.2
Sixapart Movable Type 5.2.3
Sixapart Movable Type 5.2.10
NA
CVE-2014-0977
Cross-site scripting (XSS) vulnerability in the Rich Text Editor in Movable Type 5.0x, 5.1x prior to 5.161, 5.2.x prior to 5.2.9, and 6.0.x prior to 6.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Sixapart Movabletype 5.11
Sixapart Movabletype 5.12
Sixapart Movabletype 5.2.7
Sixapart Movabletype 6.0
Sixapart Movabletype 5.15
Sixapart Movabletype 5.2
Sixapart Movabletype 5.2.2
Sixapart Movabletype 5.02
Sixapart Movabletype 5.01
Sixapart Movabletype 5.04
Sixapart Movabletype 5.2.3
Sixapart Movabletype 5.2.6
Sixapart Movabletype 5.0
Sixapart Movabletype 5.13
Sixapart Movabletype 5.14
Sixapart Movabletype 5.031
Sixapart Movabletype 5.03
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started