Vulnerabilities > Movabletype > SIX Apart Movable Type
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-07-16 | CVE-2009-2480 | Cross-Site Scripting vulnerability in Movabletype SIX Apart Movable Type 4.24/4.25 Cross-site scripting (XSS) vulnerability in mt-wizard.cgi in Six Apart Movable Type 4.24, and 4.25 when global templates are not initialized, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |