Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:sixapart:movabletype:5.12:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-5313 |
Cross-site scripting (XSS) vulnerability in the management page in Six Apart Movable Type before 5.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Published: September 10, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
CVE-2014-0977 |
Cross-site scripting (XSS) vulnerability in the Rich Text Editor in Movable Type 5.0x, 5.1x before 5.161, 5.2.x before 5.2.9, and 6.0.x before 6.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: January 10, 2014; 12:55:03 PM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2011-4274 |
Cross-site scripting (XSS) vulnerability in the A-Form PC and PC/Mobile before 3.1 plug-ins for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-2676. Published: November 03, 2011; 6:55:09 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |