Vulnerability Details CVE-2021-20814
Cross-site scripting vulnerability in Setting screen of ContentType Information Widget Plugin of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4903 and earlier (Movable Type Advanced 7 Series), and Movable Type Premium 1.44 and earlier) allows remote attackers to inject arbitrary script or HTML via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 56.4%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2021-20814
-
cpe:2.3:a:sixapart:movable_type:-
-
cpe:2.3:a:sixapart:movable_type:1.11
-
cpe:2.3:a:sixapart:movable_type:1.2
-
cpe:2.3:a:sixapart:movable_type:1.21
-
cpe:2.3:a:sixapart:movable_type:1.22
-
cpe:2.3:a:sixapart:movable_type:1.23
-
cpe:2.3:a:sixapart:movable_type:1.24
-
cpe:2.3:a:sixapart:movable_type:1.25
-
cpe:2.3:a:sixapart:movable_type:1.26
-
cpe:2.3:a:sixapart:movable_type:1.27
-
cpe:2.3:a:sixapart:movable_type:1.28
-
cpe:2.3:a:sixapart:movable_type:1.29
-
cpe:2.3:a:sixapart:movable_type:1.30
-
cpe:2.3:a:sixapart:movable_type:1.31
-
cpe:2.3:a:sixapart:movable_type:1.32
-
cpe:2.3:a:sixapart:movable_type:1.33
-
cpe:2.3:a:sixapart:movable_type:1.34
-
cpe:2.3:a:sixapart:movable_type:1.35
-
cpe:2.3:a:sixapart:movable_type:1.36
-
cpe:2.3:a:sixapart:movable_type:1.37
-
cpe:2.3:a:sixapart:movable_type:1.38
-
cpe:2.3:a:sixapart:movable_type:1.39
-
cpe:2.3:a:sixapart:movable_type:1.40
-
cpe:2.3:a:sixapart:movable_type:1.41
-
cpe:2.3:a:sixapart:movable_type:1.42
-
cpe:2.3:a:sixapart:movable_type:1.43
-
cpe:2.3:a:sixapart:movable_type:1.44
-
cpe:2.3:a:sixapart:movable_type:7.0
-
cpe:2.3:a:sixapart:movable_type:7.0.0
-
cpe:2.3:a:sixapart:movable_type:7.1.1
-
cpe:2.3:a:sixapart:movable_type:7.1.2
-
cpe:2.3:a:sixapart:movable_type:7.1.3
-
cpe:2.3:a:sixapart:movable_type:7.1.4
-
cpe:2.3:a:sixapart:movable_type:7.2.0
-
cpe:2.3:a:sixapart:movable_type:7.2.1
-
cpe:2.3:a:sixapart:movable_type:7.3.0
-
cpe:2.3:a:sixapart:movable_type:7.3.1
-
cpe:2.3:a:sixapart:movable_type:7.4.1
-
cpe:2.3:a:sixapart:movable_type:7.5.0
-
cpe:2.3:a:sixapart:movable_type:7.6.0
-
cpe:2.3:a:sixapart:movable_type:7.7.0
-
cpe:2.3:a:sixapart:movable_type:7.7.1