exploitDog

GHSA-9593-qc6j-7cmf

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the search function in Six Apart Movable Type 3.3 to 3.32, and Movable Type Enterprise 1.01 and 1.02, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Cross-site scripting (XSS) vulnerability in the search function in Six Apart Movable Type 3.3 to 3.32, and Movable Type Enterprise 1.01 and 1.02, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

EPSS

Процентиль: 67%

0.00527

Низкий

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2006-5080

nvd

больше 19 лет назад

Cross-site scripting (XSS) vulnerability in the search function in Six Apart Movable Type 3.3 to 3.32, and Movable Type Enterprise 1.01 and 1.02, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

EPSS

Процентиль: 67%

0.00527

Низкий

CVE ID

Дефекты

CWE-79