CVE-2012-1497

Movable Type < 4.38, 5.0x < 5.07, 5.1x < 5.13 - Authenticated Path Traversal via mt:Include file Attribute

Title source: llm
STIX 2.1

Description

The default configuration of Movable Type before 4.38, 5.0x before 5.07, and 5.1x before 5.13 supports the "mt:Include file=" attribute, which allows remote authenticated users to conduct directory traversal attacks and read arbitrary files by leveraging the template-designer role.

References (3)

Core 3
Core References
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2012/dsa-2423

Scores

EPSS 0.0190
EPSS Percentile 77.2%

Details

CWE
CWE-22
Status published
Products (44)
movabletype/movable_type_advanced 4.0 (2 CPE variants)
movabletype/movable_type_advanced 4.1 (2 CPE variants)
movabletype/movable_type_advanced 4.01 beta
movabletype/movable_type_advanced 4.2 (2 CPE variants)
movabletype/movable_type_advanced 4.3
movabletype/movable_type_advanced 4.23
movabletype/movable_type_advanced 4.25
movabletype/movable_type_advanced 4.26
movabletype/movable_type_advanced 4.31
movabletype/movable_type_advanced 4.32
... and 34 more
Published Mar 03, 2012
Tracked Since Feb 18, 2026