CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Sixapart: >> Movabletype >> 3.2 Security Vulnerabilities

CVE-2014-5313

Cross-site scripting (XSS) vulnerability in the management page in Six Apart Movable Type before 5.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

3.5

EPSS Score

0.002

Published

2014-09-10

CVE-2011-4274

Cross-site scripting (XSS) vulnerability in the A-Form PC and PC/Mobile before 3.1 plug-ins for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-2676.

CVSS Score

4.3

EPSS Score

0.003

Published

2011-11-03

Page 1

Vulnerabilities

Vulnerable Software

Sixapart: >> Movabletype >> 3.2 Security Vulnerabilities

Products

Pricing

Contact Us