Six Apart Movable Type (MT) before 4.23 allows remote authenticated users with create permission for posts to bypass intended access restrictions and publish posts via a "system-wide entry listing screen."
https://exchange.xforce.ibmcloud.com/vulnerabilities/47759