CVE-2012-1503

Name of the Vulnerable Software and Affected Versions Movable Type (MT) Pro version 5.13

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the comment section. This could potentially lead to unauthorized actions on the affected system.

Recommendations For Movable Type (MT) Pro version 5.13, update to a version that includes a fix for this issue, as using the comment section could allow for the injection of malicious scripts. As a temporary workaround, consider disabling the comment section until a patch is available.