Known Vulnerabilities for products from Sixapart
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Sixapart".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33088 json | Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arb... | Not Provided | 2026-04-08 | 2026-04-20 |
| CVE-2026-25776 json | Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitr... | Not Provided | 2026-04-08 | 2026-04-20 |
| CVE-2023-45746 json | Cross-site scripting vulnerability in Movable Type series allows a remote authenticated attacker to inject an arbitrary scrip... | 5.4 - MEDIUM | 2023-10-30 | 2023-11-08 |
| CVE-2022-45122 json | Cross-site scripting vulnerability in Movable Type Movable Type 7 r.5301 and earlier (Movable Type 7 Series), Movable Type Ad... | 6.1 - MEDIUM | 2022-12-07 | 2022-12-12 |
| CVE-2022-45113 json | Improper validation of syntactic correctness of input vulnerability exist in Movable Type series. Having a user to access a s... | 6.5 - MEDIUM | 2022-12-07 | 2022-12-12 |
| CVE-2022-43660 json | Improper neutralization of Server-Side Includes (SSW) within a web page in Movable Type series allows a remote authenticated ... | 7.2 - HIGH | 2022-12-07 | 2022-12-12 |
| CVE-2022-38078 json | Movable Type XMLRPC API provided by Six Apart Ltd. contains a command injection vulnerability. Sending a specially crafted me... | 9.8 - CRITICAL | 2022-08-24 | 2023-08-08 |
| CVE-2021-20837 json | Movable Type 7 r.5002 and earlier (Movable Type 7 Series), Movable Type 6.8.2 and earlier (Movable Type 6 Series), Movable Ty... | 9.8 - CRITICAL | 2021-10-26 | 2021-11-28 |
| CVE-2021-20815 json | Cross-site scripting vulnerability in Edit Boilerplate screen of Movable Type (Movable Type 7 r.4903 and earlier (Movable Typ... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20814 json | Cross-site scripting vulnerability in Setting screen of ContentType Information Widget Plugin of Movable Type (Movable Type 7... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20813 json | Cross-site scripting vulnerability in Edit screen of Content Data of Movable Type (Movable Type 7 r.4903 and earlier (Movable... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20812 json | Cross-site scripting vulnerability in Setting screen of Server Sync of Movable Type (Movable Type Advanced 7 r.4903 and earli... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20811 json | Cross-site scripting vulnerability in List of Assets screen of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type ... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20810 json | Cross-site scripting vulnerability in Website Management screen of Movable Type (Movable Type 7 r.4903 and earlier (Movable T... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20809 json | Cross-site scripting vulnerability in Create screens of Entry, Page, and Content Type of Movable Type (Movable Type 7 r.4903 ... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2021-20808 json | Cross-site scripting vulnerability in Search screen of Movable Type (Movable Type 7 r.4903 and earlier (Movable Type 7 Series... | 6.1 - MEDIUM | 2021-08-26 | 2021-09-01 |
| CVE-2020-5669 json | Cross-site scripting vulnerability in Movable Type Movable Type Premium 1.37 and earlier and Movable Type Premium Advanced 1.... | 5.4 - MEDIUM | 2021-10-26 | 2021-10-29 |
| CVE-2020-5577 json | Movable Type series (Movable Type 7 r.4606 (7.2.1) and earlier (Movable Type 7), Movable Type Advanced 7 r.4606 (7.2.1) and e... | 8.8 - HIGH | 2020-05-14 | 2020-05-15 |
| CVE-2020-5576 json | Cross-site request forgery (CSRF) vulnerability in Movable Type series (Movable Type 7 r.4606 (7.2.1) and earlier (Movable Ty... | 8.8 - HIGH | 2020-05-14 | 2020-05-15 |
| CVE-2020-5575 json | Cross-site scripting vulnerability in Movable Type series (Movable Type 7 r.4606 (7.2.1) and earlier (Movable Type 7), Movabl... | 6.1 - MEDIUM | 2020-05-14 | 2020-05-15 |
Known software with vulnerabilities from Sixapart
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Sixapart | Movabletype | 3.2 |
| Application | Sixapart | Movable Type | 1.0 |