CVE-2008-5808

Cross-site scripting (XSS) vulnerability in Six Apart Movable Type Enterprise (MTE) 1.x before 1.56; Movable Type (MT) 3.x before 3.38; and Movable Type, Movable Type Open Source (MTOS), and Movable Type Enterprise 4.x before 4.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to "application management."
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
VendorProductVersion
six_apartmovable_type
4.20
six_apartmovable_type
4.20:unknown
six_apartmovable_type
4.20:unknown
sixapartmovable_type
1.00
sixapartmovable_type
1.1
sixapartmovable_type
1.2
sixapartmovable_type
1.3
sixapartmovable_type
1.4
sixapartmovable_type
1.5
sixapartmovable_type
1.31
sixapartmovable_type
3.0d:d
sixapartmovable_type
3.1
sixapartmovable_type
3.01d:d
sixapartmovable_type
3.2
sixapartmovable_type
3.3
sixapartmovable_type
3.11
sixapartmovable_type
3.12
sixapartmovable_type
3.14
sixapartmovable_type
3.15
sixapartmovable_type
3.16
sixapartmovable_type
3.17
sixapartmovable_type
3.32
sixapartmovable_type
3.33
sixapartmovable_type
3.34
sixapartmovable_type
3.35
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
movabletype-opensource
karmic
not-affected
jaunty
not-affected
intrepid
ignored
hardy
dne
gutsy
dne
dapper
dne
Common Weakness Enumeration
References
http://jvn.jp/en/jp/JVN02216739/index.html
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000067.html
http://secunia.com/advisories/32935
http://www.movabletype.jp/blog/_movable_type_423.html
http://www.securityfocus.com/bid/32604
https://exchange.xforce.ibmcloud.com/vulnerabilities/47019
http://jvn.jp/en/jp/JVN02216739/index.html
http://jvndb.jvn.jp/en/contents/2008/JVNDB-2008-000067.html
http://secunia.com/advisories/32935
http://www.movabletype.jp/blog/_movable_type_423.html
http://www.securityfocus.com/bid/32604
https://exchange.xforce.ibmcloud.com/vulnerabilities/47019