CVE-2011-5084

Cross-site scripting (XSS) vulnerability in Movable Type 4.x before 4.36 and 5.x before 5.05 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 49%
VendorProductVersion
sixapartmovable_type
4.0
sixapartmovable_type
4.0:beta
sixapartmovable_type
4.0:beta2
sixapartmovable_type
4.0:beta3
sixapartmovable_type
4.0:beta4
sixapartmovable_type
4.0:beta5
sixapartmovable_type
4.0:beta6
sixapartmovable_type
4.0:beta7
sixapartmovable_type
4.0:rc1
sixapartmovable_type
4.0:rc2
sixapartmovable_type
4.0:rc3
sixapartmovable_type
4.01
sixapartmovable_type
4.1
sixapartmovable_type
4.1:beta
sixapartmovable_type
4.01:beta
sixapartmovable_type
4.1:beta2
sixapartmovable_type
4.01:beta2
sixapartmovable_type
4.1:rc1
sixapartmovable_type
4.01:rc1
sixapartmovable_type
4.2
sixapartmovable_type
4.2:rc2
sixapartmovable_type
4.2:rc4
sixapartmovable_type
4.2:rc5
sixapartmovable_type
4.12
sixapartmovable_type
4.15:beta1
sixapartmovable_type
4.15:beta3
sixapartmovable_type
4.15:beta4
sixapartmovable_type
4.21
sixapartmovable_type
4.22
sixapartmovable_type
4.23
sixapartmovable_type
4.24
sixapartmovable_type
4.25
sixapartmovable_type
4.26
sixapartmovable_type
4.27
sixapartmovable_type
4.28
sixapartmovable_type
4.29
sixapartmovable_type
4.35
sixapartmovable_type
4.36
sixapartmovable_type
4.261
sixapartmovable_type
4.291
sixapartmovable_type
4.292
sixapartmovable_type
5.0
sixapartmovable_type
5.0:beta1
sixapartmovable_type
5.0:beta2
sixapartmovable_type
5.0:beta3
sixapartmovable_type
5.0:beta4
sixapartmovable_type
5.0:rc1
sixapartmovable_type
5.0:rc2
sixapartmovable_type
5.0:rc3
sixapartmovable_type
5.01
sixapartmovable_type
5.02
sixapartmovable_type
5.03
sixapartmovable_type
5.04
sixapartmovable_type
5.05
sixapartmovable_type
5.031
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
movabletype-opensource
saucy
not-affected
raring
not-affected
quantal
not-affected
precise
not-affected
oneiric
not-affected
natty
ignored
maverick
ignored
lucid
ignored
hardy
dne
Common Weakness Enumeration
References
http://www.debian.org/security/2012/dsa-2423
http://www.movabletype.org/2011/05/movable_type_51_and_505_436_security_update.html
http://www.debian.org/security/2012/dsa-2423
http://www.movabletype.org/2011/05/movable_type_51_and_505_436_security_update.html