JVN iPedia

Database Search

Keyword search:	How to use Search
With Synonym:

Vendor:
Product:
Date Public:	/ - /
Date Last Updated:	/ - /
CVSS Severity (CVSSv3):	Critical:(9.0-10.0) High:(7.0-8.9) Medium:(4.0-6.9) Low:(0.1-3.9) None:(0)
CVSS Severity (CVSSv2):	High:(7.0-10.0) Medium:(4.0-6.9) Low:(0.0-3.9)
CWE:	What is CWE?

※「Vendor/Product search」button is available only in the Microsoft Edge(ie mode).

Results 1-43 of 43

ID	Title	CVSSv3	CVSSv2	Date Public	Date Last Updated
JVNDB-2023-000105 (JVN#39139884)	Movable Type vulnerable to cross-site scripting	5.4	3.5	2023/10/25	2023/10/25
JVNDB-2022-000090 (JVN#37014768)	Multiple vulnerabilities in Movable Type	7.2	4.6	2022/11/16	2022/11/16
JVNDB-2022-000070 (JVN#48120704)	Movable Type plugin A-Form vulnerable to cross-site scripting	6.1	4.3	2022/09/09	2022/09/09
JVNDB-2022-000064 (JVN#57728859)	Movable Type XMLRPC API vulnerable to command injection	9.8	7.5	2022/08/24	2022/08/24
JVNDB-2021-000093 (JVN#41119755)	Movable Type XMLRPC API vulnerable to OS command injection	9.8	7.5	2021/10/20	2021/12/17
JVNDB-2021-000079 (JVN#97545738)	Multiple cross-site scripting vulnerabilities in Movable Type	6.1	2.6	2021/08/25	2021/08/25
JVNDB-2021-000017 (JVN#66542874)	Multiple cross-site scripting vulnerabilities in Movable Type	6.1	2.6	2021/02/24	2021/02/24
JVNDB-2020-000073 (JVN#94245475)	Movable Type Premium vulnerable to cross-site scripting	6.1	2.6	2020/11/18	2020/11/18
JVNDB-2020-000030 (JVN#28806943)	Multiple vulnerabilities in Movable Type	6.3	6.5	2020/05/13	2020/05/13
JVNDB-2020-000009 (JVN#94435544)	Movable Type vulnerable to cross-site scripting	6.1	2.6	2020/02/06	2020/02/06
JVNDB-2019-000069 (JVN#65280626)	Movable Type vulnerable to open redirect	4.7	2.6	2019/11/13	2019/11/13
JVNDB-2018-000094 (JVN#89550319)	Movable Type vulnerable to cross-site scripting	6.1	4.3	2018/08/30	2019/07/25
JVNDB-2018-000080 (JVN#62423700)	Movable Type plugin MTAppjQuery vulnerable to PHP code execution	7.3	7.5	2018/07/18	2019/07/26
JVNDB-2017-000243 (JVN#78501037)	Movable Type plugin A-Member and A-Reserve vulnerable to SQL injection	7.3	7.5	2017/11/30	2018/03/14
JVNDB-2016-002298 (JVNVU#92116866)	Keitai Kit for Movable Type vulnerable to OS command injection	7.3	7.5	2016/05/16	2016/12/05
JVNDB-2015-000067 (JVN#64459670)	mt-phpincgi vulnerable to PHP object injection	-	7.5	2015/05/20	2015/05/28
JVNDB-2014-000104 (JVN#73357573)	Movable Type vulnerable to cross-site scripting	-	4.0	2014/09/09	2014/09/11
JVNDB-2012-000069 (JVN#79111101)	Movable Type plugin MT4i vulnerable to cross-site scripting	-	4.3	2012/07/06	2012/07/06
JVNDB-2012-000067 (JVN#80835745)	Movable Type plugin MT4i vulnerable to cross-site scripting	-	4.3	2012/07/06	2012/07/06
JVNDB-2012-000018 (JVN#20083397)	Movable Type vulnerable to session hijacking	-	6.4	2012/02/23	2012/02/23
JVNDB-2012-000017 (JVN#92683325)	Movable Type vulnerable to OS command injection	-	6.5	2012/02/23	2012/02/23
JVNDB-2012-000016 (JVN#49836527)	Movable Type vulnerable to cross-site scripting	-	2.6	2012/02/23	2012/02/23
JVNDB-2012-000015 (JVN#70683217)	Movable Type vulnerable to cross-site request forgery	-	4.0	2012/02/23	2012/02/23
JVNDB-2011-000108 (JVN#60887968)	Movable Type Plugin MailForm vulnerable to cross-site scripting	-	4.3	2011/12/26	2011/12/26
JVNDB-2011-000094 (JVN#56667137)	Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request foregery	-	2.6	2011/10/31	2011/11/08
JVNDB-2011-000093 (JVN#41032068)	Multiple SKYARC System Co., Ltd. products fail to restrict access permissions	-	4.0	2011/10/31	2011/11/08
JVNDB-2011-000078 (JVN#34980730)	A-Form vulnerable in restricting access	-	4.0	2011/10/07	2011/10/11
JVNDB-2011-000031 (JVN#45658190)	Movable Type vulnerable to cross-site scripting	-	5.0	2011/05/25	2011/05/25
JVNDB-2010-000061 (JVN#78536512)	Movable Type vulnerable to SQL injection	-	6.8	2010/12/08	2010/12/08
JVNDB-2010-000060 (JVN#36673836)	Movable Type vulnerable to cross-site scripting	-	4.3	2010/12/08	2010/12/08
JVNDB-2010-000017 (JVN#92854093)	Movable Type vulnerable to cross-site scripting	-	2.6	2010/05/12	2010/05/12
JVNDB-2010-000001 (JVN#09872874)	Movable Type access restriction bypass vulnerability	-	5.5	2010/01/06	2010/01/06
JVNDB-2009-000043 (JVN#08369659)	Movable Type access restriction bypass vulnerability	-	5.0	2009/06/24	2009/07/01
JVNDB-2009-000042 (JVN#86472161)	Movable Type cross-site scripting vulnerability	-	2.6	2009/06/24	2009/07/01
JVNDB-2009-000020 (JVN#97248625)	Movable Type cross-site scripting vulnerability	-	4.3	2009/04/24	2009/07/29
JVNDB-2009-000002 (JVN#71945722)	Movable Type Enterprise cross-site scripting vulnerability	-	4.3	2009/01/08	2009/07/29
JVNDB-2008-000072 (JVN#81490697)	Movable Type cross-site scripting vulnerability	-	4.0	2008/10/17	2011/05/31
JVNDB-2008-000067 (JVN#02216739)	Movable Type Enterprise cross-site scripting vulnerability	-	4.3	2008/12/03	2008/12/04
JVNDB-2008-000056 (JVN#30385652)	Movable Type vulnerable to cross-site scripting	-	4.3	2008/09/09	2008/09/10
JVNDB-2008-000003 (JVN#21312708)	MTCMS WYSIWYG Editor cross-site scripting vulnerability	-	2.6	2008/03/07	2008/05/21
JVNDB-2007-000073 (JVN#32985115)	Movable Type cross-site scripting vulnerability	-	5.0	2007/01/22	2008/05/21
JVNDB-2006-000653 (JVN#68295640)	Movable Type vulnerabile to cross-site scripting	-	4.3	2006/09/26	2008/05/21
JVNDB-2005-000768 (JVN#74012178)	Movable Type session management vulnerability	-	5.0	2005/05/12	2008/05/21

Results 1-43 of 43