| Max CVSS | 5.8 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2009-2480 | 4.3 |
Cross-site scripting (XSS) vulnerability in mt-wizard.cgi in Six Apart Movable Type 4.24, and 4.25 when global templates are not initialized, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
17-08-2017 - 01:30 | 16-07-2009 - 16:30 | |
| CVE-2009-2481 | 5.8 |
mt-wizard.cgi in Six Apart Movable Type before 4.261, when global templates are not initialized, allows remote attackers to bypass access restrictions and (1) send e-mail to arbitrary addresses or (2) obtain sensitive information via unspecified vect
|
17-08-2017 - 01:30 | 16-07-2009 - 16:30 | |
| CVE-2009-2492 | 2.6 |
Cross-site scripting (XSS) vulnerability in mt-wizard.cgi in Six Apart Movable Type before 4.261 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2009-2480.
|
07-08-2009 - 05:22 | 17-07-2009 - 16:30 |