Every CVE whose affected-product data names Sixapart Movabletype, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2010-4511 — CVSS 10.0 (critical): Unspecified vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 has unknown impact and attack vectors related to the "dynamic…
CVE-2010-4509 — CVSS 10.0 (critical): Multiple unspecified vulnerabilities in Movable Type 4.x before 4.35 and 5.x before 5.04 have unknown impact and attack vectors related to…
CVE-2015-0845 — CVSS 7.5 (high): Format string vulnerability in Movable Type Pro, Open Source, and Advanced before 5.2.13 and Pro and Advanced 6.0.x before 6.0.8 allows…
CVE-2010-3922 — CVSS 7.5 (high): SQL injection vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to execute arbitrary SQL commands…
CVE-2010-3921 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.35 and 5.x before 5.04 allows remote attackers to inject arbitrary…
CVE-2014-0977 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Rich Text Editor in Movable Type 5.0x, 5.1x before 5.161, 5.2.x before 5.2.9, and 6.0.x…
CVE-2014-5313 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in the management page in Six Apart Movable Type before 5.2 allows remote authenticated users to…