mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.1 KiB
1.1 KiB
CVE-2021-20814
%2C%20Movable%20Type%20Advanced%207%20r.4903%20and%20earlier%20(Movable%20Type%20Advanced%207%20Series)%2C%20and%20Movable%20Type%20Premium%201.44%20and%20earlier%20&color=brightgreen)
Description
Cross-site scripting vulnerability in Setting screen of ContentType Information Widget Plugin of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4903 and earlier (Movable Type Advanced 7 Series), and Movable Type Premium 1.44 and earlier) allows remote attackers to inject arbitrary script or HTML via unspecified vectors.
POC
Reference
No PoCs from references.