CVE-2012-1497
Movable Type < 4.38, 5.0x < 5.07, 5.1x < 5.13 - Authenticated Path Traversal via mt:Include file Attribute
Title source: llmDescription
The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory traversal attacks and read arbitrary files by leveraging the template-designer role.
References (3)
Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.movabletype.org/2012/02/movable_type_513_507_and_438_security_updates.html
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2012/dsa-2423
Patch, Vendor Advisory x_refsource_confirm
http://www.movabletype.org/documentation/appendices/release-notes/513.html
Scores
EPSS
0.0190
EPSS Percentile
77.2%
Details
CWE
CWE-22
Status
published
Products (44)
movabletype/movable_type_advanced
4.0 (2 CPE variants)
movabletype/movable_type_advanced
4.1 (2 CPE variants)
movabletype/movable_type_advanced
4.01 beta
movabletype/movable_type_advanced
4.2 (2 CPE variants)
movabletype/movable_type_advanced
4.3
movabletype/movable_type_advanced
4.23
movabletype/movable_type_advanced
4.25
movabletype/movable_type_advanced
4.26
movabletype/movable_type_advanced
4.31
movabletype/movable_type_advanced
4.32
... and 34 more
Published
Mar 03, 2012
Tracked Since
Feb 18, 2026