CVE-2009-2492
CVE Descriptions
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 2.6 | AV:N/AC:H/Au:N/C:N/I:P/A:N | nvd@nist.gov |
EPSS
EPSS Score
EPSS Percentile
Products Mentioned
Configuraton 0
Six_apart>>Movable_type >> Version To (including) 4.25
Six_apart>>Movable_type >> Version 1.54
Six_apart>>Movable_type >> Version 2.6
Six_apart>>Movable_type >> Version 2.63
Six_apart>>Movable_type >> Version 3.3
Six_apart>>Movable_type >> Version 3.16
Six_apart>>Movable_type >> Version 3.17
Six_apart>>Movable_type >> Version 3.32
Six_apart>>Movable_type >> Version 3.33
Six_apart>>Movable_type >> Version 3.36
Six_apart>>Movable_type >> Version 4
Six_apart>>Movable_type >> Version 4
Six_apart>>Movable_type >> Version 4
Six_apart>>Movable_type >> Version 4
Six_apart>>Movable_type >> Version 4.20
Six_apart>>Movable_type >> Version 4.20
Six_apart>>Movable_type >> Version 4.20
Six_apart>>Movable_type >> Version 4.20
Six_apart_ltd>>Movable_type >> Version *
Six_apart_ltd>>Movable_type >> Version 3.33
Sixapart>>Movable_type >> Version 1.00
Sixapart>>Movable_type >> Version 1.1
Sixapart>>Movable_type >> Version 1.2
Sixapart>>Movable_type >> Version 1.3
Sixapart>>Movable_type >> Version 1.4
Sixapart>>Movable_type >> Version 1.5
Sixapart>>Movable_type >> Version 1.31
Sixapart>>Movable_type >> Version 3.0d
Sixapart>>Movable_type >> Version 3.1
Sixapart>>Movable_type >> Version 3.01d
Sixapart>>Movable_type >> Version 3.2
Sixapart>>Movable_type >> Version 3.3
Sixapart>>Movable_type >> Version 3.11
Sixapart>>Movable_type >> Version 3.12
Sixapart>>Movable_type >> Version 3.14
Sixapart>>Movable_type >> Version 3.15
Sixapart>>Movable_type >> Version 3.16
Sixapart>>Movable_type >> Version 3.17
Sixapart>>Movable_type >> Version 3.32
Sixapart>>Movable_type >> Version 3.33
Sixapart>>Movable_type >> Version 3.34
Sixapart>>Movable_type >> Version 3.35
Sixapart>>Movable_type >> Version 4.0
Sixapart>>Movable_type >> Version 4.0
Sixapart>>Movable_type >> Version 4.01
Sixapart>>Movable_type >> Version 4.1
Sixapart>>Movable_type >> Version 4.1
Sixapart>>Movable_type >> Version 4.01
Sixapart>>Movable_type >> Version 4.01
Sixapart>>Movable_type >> Version 4.01
Sixapart>>Movable_type >> Version 4.2
Sixapart>>Movable_type >> Version 4.2
Sixapart>>Movable_type >> Version 4.2
Sixapart>>Movable_type >> Version 4.12
Sixapart>>Movable_type >> Version 4.12
Sixapart>>Movable_type >> Version 4.21
Sixapart>>Movable_type >> Version 4.21
Sixapart>>Movable_type >> Version 4.21
Sixapart>>Movable_type >> Version 4.23
Sixapart>>Movable_type >> Version 4.23
References
Tags : third-party-advisory, x_refsource_JVNDB
