Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2023-45746

Опубликовано: 30 окт. 2023
Источник: nvd
CVSS3: 5.4
EPSS Низкий

Описание

Cross-site scripting vulnerability in Movable Type series allows a remote authenticated attacker to inject an arbitrary script. Affected products/versions are as follows: Movable Type 7 r.5405 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.5405 and earlier (Movable Type 7 Series), Movable Type Premium 1.58 and earlier, Movable Type Premium Advanced 1.58 and earlier, Movable Type Cloud Edition (Version 7) r.5405 and earlier, and Movable Type Premium Cloud Edition 1.58 and earlier.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:sixapart:movable_type:*:*:*:*:*:*:*:*
Версия до 7.902.0 (исключая)
Конфигурация 2
cpe:2.3:a:sixapart:movable_type:*:*:*:*:advanced:*:*:*
Версия до 7.902.0 (исключая)
Конфигурация 3
cpe:2.3:a:sixapart:movable_type:*:*:*:*:premium:*:*:*
Версия до 1.59 (исключая)
Конфигурация 4
cpe:2.3:a:sixapart:movable_type:*:*:*:*:premium_advanced:*:*:*
Версия до 1.59 (исключая)
Конфигурация 5
cpe:2.3:a:sixapart:movable_type:*:*:*:*:aws:*:*:*
Версия до 7.902.0 (исключая)
Конфигурация 6
cpe:2.3:a:sixapart:movable_type:*:*:*:*:advanced_aws:*:*:*
Версия до 1.59 (исключая)

EPSS

Процентиль: 30%
0.00109
Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

debian логотип

CVE-2023-45746

CVSS3: 5.4
debian
больше 2 лет назад

Cross-site scripting vulnerability in Movable Type series allows a rem ...

github логотип

GHSA-wpjj-rrr4-p36v

CVSS3: 5.4
github
больше 2 лет назад

Cross-site scripting vulnerability in Movable Type series allows a remote authenticated attacker to inject an arbitrary script. Affected products/versions are as follows: Movable Type 7 r.5405 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.5405 and earlier (Movable Type 7 Series), Movable Type Premium 1.58 and earlier, Movable Type Premium Advanced 1.58 and earlier, Movable Type Cloud Edition (Version 7) r.5405 and earlier, and Movable Type Premium Cloud Edition 1.58 and earlier.

EPSS

Процентиль: 30%
0.00109
Низкий

5.4 Medium

CVSS3

Дефекты

CWE-79