CVE-2013-0209

lib/MT/Upgrade.pm in mt-upgrade.cgi in Movable Type 4.2x and 4.3x through 4.38 does not require authentication for requests to database-migration functions, which allows remote attackers to conduct eval injection and SQL injection attacks via crafted parameters, as demonstrated by an eval injection attack against the core_drop_meta_for_table function, leading to execution of arbitrary Perl code.

Published: Jan 23, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-0209
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
sixapart / movable_type	4.33	4.33.x
sixapart / movable_type	4.34	4.34.x
sixapart / movable_type	4.24	4.24.x
sixapart / movable_type	4.291	4.291.x
sixapart / movable_type	4.23	4.23.x
sixapart / movable_type	4.36	4.36.x
sixapart / movable_type	4.261	4.261.x
sixapart / movable_type	4.35	4.35.x
sixapart / movable_type	4.29	4.29.x
sixapart / movable_type	4.292	4.292.x
sixapart / movable_type	4.26	4.26.x
sixapart / movable_type	4.38	4.38.x
sixapart / movable_type	4.37	4.37.x
sixapart / movable_type	4.21	4.21.x
sixapart / movable_type	4.27	4.27.x
sixapart / movable_type	4.28	4.28.x
sixapart / movable_type	4.32	4.32.x
sixapart / movable_type	4.25	4.25.x
sixapart / movable_type	4.31	4.31.x
sixapart / movable_type	4.361	4.361.x
sixapart / movable_type	4.22	4.22.x

Vulnerability Database

290,922

CVE-2013-0209