CVE-2022-38972

Published: 2022-09-12T02:15Z

Last Modified: 2024-11-21T07:17Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross-site scripting vulnerability in Movable Type plugin A-Form versions prior to 4.1.1 (for Movable Type 7 Series) and versions prior to 3.9.1 (for Movable Type 6 Series) allows a remote unauthenticated attacker to inject an arbitrary script. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt