CVE-2012-1503
Cross-site scripting (XSS) vulnerability in Six Apart (formerly Six Apart KK) Movable Type (MT) Pro 5.13 allows remote attackers to inject arbitrary web script or HTML via the comment section.
| Software | From | Fixed in |
|---|---|---|
| sixapart / movable_type | 5.13 | 5.13.x |
- http://osvdb.org/show/osvdb/86729
- http://packetstormsecurity.org/files/117564/Movable-Type-Pro-5.13en-Cross-Site-Scripting.html
- http://www.cloudscan.me/2012/10/cve-2012-1503-movable-type-pro-513en.html
- http://www.exploit-db.com/exploits/22151
- http://www.securityfocus.com/bid/56160
- https://exchange.xforce.ibmcloud.com/vulnerabilities/79521
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime