Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Movable Type < 4.26 Multiple Vulnerabilities

High

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is running Movable Type, a blogging software for Unix and Windows platforms. The installed version is earlier than 4.26. Such versions are reportedly affected by multiple vulnerabilities :

- An unspecified cross-site scripting vulnerability.

- A security-bypass issue in the 'mt-wizard.cgi' script.

Solution

Upgrade to Movable Type 4.26 or later.