Vulnerabilities

CVE-2025-25054

by Fred · 19/02/2025

Movable Type contains a reflected cross-site scripting vulnerability in the user information edit page. When Multi-Factor authentication plugin is enabled and a user accesses a crafted page while logged in to the affected product, an arbitrary script may be executed on the web browser of the user.

More information : https://jvn.jp/en/jp/JVN48742353/

Similar

Tags: Cybersecurity Alert