Alfasado

**Name of the Vulnerable Software and Affected Versions** Movable Type versions 4.x through 4.35 Movable Type versions 5.x through 5.04 **Description** A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. **Recommendations** For Movable Type versions 4.x through 4.35, update to version 4.36 or later. For Movable Type versions 5.x through 5.04, update to version 5.05 or later.

**Name of the Vulnerable Software and Affected Versions** Movable Type versions 4.x through 4.35 Movable Type versions 5.x through 5.04 **Description** The issue allows remote attackers to read or modify data via unknown vectors. **Recommendations** For Movable Type versions 4.x through 4.35, update to version 4.36 or later. For Movable Type versions 5.x through 5.04, update to version 5.05 or later.