Movabletype Movable Type Advanced — known CVE vulnerabilities
Every CVE whose affected-product data names Movabletype Movable Type Advanced, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2012-0319 — CVSS 6.5 (medium): The file-management system in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 allows remote authenticated users to execute…
CVE-2021-20665 — CVSS 6.1 (medium): Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier (Movable Type 7 Series)…
CVE-2021-20663 — CVSS 6.1 (medium): Cross-site scripting vulnerability in in Role authority setting screen of Movable Type 7 r.4705 and earlier (Movable Type 7 Series)…
CVE-2021-20664 — CVSS 6.1 (medium): Cross-site scripting vulnerability in in Asset registration screen of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable…
CVE-2012-1262 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in cgi-bin/mt/mt-wizard.cgi in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13…
CVE-2012-0318 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 allow remote…
CVE-2012-1497 — CVSS 4.0 (medium): The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute…