[30100] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: CSS found in Movable Type

daemon@ATHENA.MIT.EDU (ben@sixapart.com)
Mon May 12 18:13:04 2003

Date: 12 May 2003 21:38:34 -0000
Message-ID: <20030512213834.8550.qmail@www.securityfocus.com>
Content-Type: text/plain
Content-Disposition: inline
Content-Transfer-Encoding: binary
MIME-Version: 1.0
From: <ben@sixapart.com>
To: bugtraq@securityfocus.com

In-Reply-To: <20030512182659.16940.qmail@www.securityfocus.com>

Regarding the potential XSS vulnerability discussed in 
DarkHunter's message, Movable Type was updated to prevent this 
possible exploit on February 13, with the release of version 2.6 of 
the sofware. In addition, all of our users were alerted to the 
potential of a security issue and urged to update to the newer 
version. Our current version is 2.63, downloadable at http://
www.movabletype.org, and it prevents this exploit by default, as 
noted by Jordan Wiens in his follow-up message.


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[30100] in bugtraq

Re: CSS found in Movable Type

daemon@ATHENA.MIT.EDU (ben@sixapart.com)Mon May 12 18:13:04 2003

daemon@ATHENA.MIT.EDU (ben@sixapart.com)
Mon May 12 18:13:04 2003