CVE-2008-5808

EUVD-2008-5778
Cross-site scripting (XSS) vulnerability in Six Apart Movable Type Enterprise (MTE) 1.x before 1.56; Movable Type (MT) 3.x before 3.38; and Movable Type, Movable Type Open Source (MTOS), and Movable Type Enterprise 4.x before 4.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to "application management."
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
Affected Products (NVD)
VendorProductVersion
six_apartmovable_type
4.20
six_apartmovable_type
4.20:unknown
six_apartmovable_type
4.20:unknown
sixapartmovable_type
1.00
sixapartmovable_type
1.1
sixapartmovable_type
1.2
sixapartmovable_type
1.3
sixapartmovable_type
1.4
sixapartmovable_type
1.5
sixapartmovable_type
1.31
sixapartmovable_type
3.0d:d
sixapartmovable_type
3.1
sixapartmovable_type
3.01d:d
sixapartmovable_type
3.2
sixapartmovable_type
3.3
sixapartmovable_type
3.11
sixapartmovable_type
3.12
sixapartmovable_type
3.14
sixapartmovable_type
3.15
sixapartmovable_type
3.16
sixapartmovable_type
3.17
sixapartmovable_type
3.32
sixapartmovable_type
3.33
sixapartmovable_type
3.34
sixapartmovable_type
3.35
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
movabletype-opensource
dapper
dne
gutsy
dne
hardy
dne
intrepid
ignored
jaunty
not-affected
karmic
not-affected
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN02216739/index.html
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000067.html
http://secunia.com/advisories/32935
http://www.movabletype.jp/blog/_movable_type_423.html
http://www.securityfocus.com/bid/32604
https://exchange.xforce.ibmcloud.com/vulnerabilities/47019
http://jvn.jp/en/jp/JVN02216739/index.html
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000067.html
http://secunia.com/advisories/32935
http://www.movabletype.jp/blog/_movable_type_423.html
http://www.securityfocus.com/bid/32604
https://exchange.xforce.ibmcloud.com/vulnerabilities/47019