Showing 1 - 1 of 1

CVE-2012-1262

Status Candidate

Overview

Cross-site scripting (XSS) vulnerability in cgi-bin/mt/mt-wizard.cgi in Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13, when the product is incompletely installed, allows remote attackers to inject arbitrary web script or HTML via the dbuser parameter, a different vulnerability than CVE-2012-0318.

Related Files

Movable Type Publishing Platform Cross Site Scripting: Posted Feb 24, 2012; Authored by Jonathan Claudius | Site trustwave.com; Movable Type Publishing Platform versions prior to 5.13, 5.07, and 4.38 are affected by a cross site scripting vulnerability. After extracting the Moveable Type CGI files and source files on to a web server, but before the application is fully installed, cross site scripting vulnerabilities are present in the '/cgi-bin/mt/mt-wizard.cgi' page.; tags | exploit, web, cgi, vulnerability, xss; advisories | CVE-2012-1262; SHA-256 | 8884fca39476f536426dc043e4acf681f4550bb0e135c0d0de6141a9f1920af3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 224 files
Ubuntu 103 files
Debian 19 files
indoushka 18 files
Gentoo 14 files
Google Security Research 13 files
CraCkEr 10 files
Mirabbas Agalarov 9 files
nu11secur1ty 8 files
Apple 8 files

File Archives

Systems

AIX (428)
Apple (1,979)
BSD (373)
CentOS (57)
Cisco (1,920)
Debian (6,754)
Fedora (1,691)
FreeBSD (1,244)
Gentoo (4,321)
HPUX (879)
iOS (344)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,806)
Mac OS X (685)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (13,328)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,638)
UNIX (9,237)
UnixWare (186)
Windows (6,555)
Other

CVE-2012-1262

Overview

Related Files

File Archive:

June 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems