CVE-2007-6751
Movable Type <1.20 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in the MailForm plugin before 1.20 for Movable Type allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (4)
Scores
EPSS
0.0029
EPSS Percentile
51.7%
Classification
CWE
CWE-79
Status
published
Affected Products (4)
h-fj/mailform_plugin
< 1.11
h-fj/mailform_plugin
h-fj/mailform_plugin
n/a/n/a
Timeline
Published
Jan 04, 2012
Tracked Since
Feb 18, 2026