Vulnerability Details CVE-2020-5669
Cross-site scripting vulnerability in Movable Type Movable Type Premium 1.37 and earlier and Movable Type Premium Advanced 1.37 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.6%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2020-5669
-
cpe:2.3:a:sixapart:movable_type:-
-
cpe:2.3:a:sixapart:movable_type:1.11
-
cpe:2.3:a:sixapart:movable_type:1.2
-
cpe:2.3:a:sixapart:movable_type:1.21
-
cpe:2.3:a:sixapart:movable_type:1.22
-
cpe:2.3:a:sixapart:movable_type:1.23
-
cpe:2.3:a:sixapart:movable_type:1.24
-
cpe:2.3:a:sixapart:movable_type:1.25
-
cpe:2.3:a:sixapart:movable_type:1.26
-
cpe:2.3:a:sixapart:movable_type:1.27
-
cpe:2.3:a:sixapart:movable_type:1.28
-
cpe:2.3:a:sixapart:movable_type:1.29
-
cpe:2.3:a:sixapart:movable_type:1.30
-
cpe:2.3:a:sixapart:movable_type:1.31
-
cpe:2.3:a:sixapart:movable_type:1.32
-
cpe:2.3:a:sixapart:movable_type:1.33
-
cpe:2.3:a:sixapart:movable_type:1.34
-
cpe:2.3:a:sixapart:movable_type:1.35
-
cpe:2.3:a:sixapart:movable_type:1.36
-
cpe:2.3:a:sixapart:movable_type:1.37