Описание
Movable Type contains a stored cross-site scripting vulnerability in Export Sites. If crafted input is stored by an attacker, arbitrary script may be executed on a logged-in user's web browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life (EOL), are affected by the vulnerability as well.
EPSS
Процентиль: 1%
0.0001
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
debian
3 дня назад
Movable Type contains a stored cross-site scripting vulnerability in E ...
CVSS3: 5.4
github
3 дня назад
Movable Type contains a stored cross-site scripting vulnerability in Export Sites. If crafted input is stored by an attacker, arbitrary script may be executed on a logged-in user's web browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life (EOL), are affected by the vulnerability as well.
EPSS
Процентиль: 1%
0.0001
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79