Cross-site scripting (XSS) vulnerability in Six Apart Movable Type Enterprise (MTE) 1.x prior to 1.56; Movable Type (MT) 3.x prior to 3.38; and Movable Type, Movable Type Open Source (MTOS), and Movable Type Enterprise 4.x prior to 4.23 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors, possibly related to "application management."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sixapart movable type 1.2 |
||
sixapart movable type 1.3 |
||
sixapart movable type 3.14 |
||
sixapart movable type 3.15 |
||
sixapart movable type 3.34 |
||
sixapart movable type 3.35 |
||
sixapart movable type 1.00 |
||
sixapart movable type 1.1 |
||
sixapart movable type 3.11 |
||
sixapart movable type 3.12 |
||
sixapart movable type 3.32 |
||
sixapart movable type 3.33 |
||
six apart movable type 4.20 |
||
sixapart movable type 1.5 |
||
sixapart movable type 3.01d |
||
sixapart movable type 3.0d |
||
sixapart movable type 3.1 |
||
sixapart movable type 3.2 |
||
sixapart movable type 3.3 |
||
six apart movable type 4 |
||
sixapart movable type 1.31 |
||
sixapart movable type 1.4 |
||
sixapart movable type 3.16 |
||
sixapart movable type 3.17 |