CVE-2007-0231 in Movable Typeinfo

Summary

Cross-site scripting (XSS) vulnerability in Movable Type (MT) 3.33, when nofollow is disabled and unmoderated comments are enabled, allows remote attackers to inject arbitrary web script or HTML via the Comments field.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

01/12/2007

Disclosure

01/12/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-80

CVSS

6.3

EPSS

0.01240

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0231
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0231
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0231/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!