CVE-2025-62499 | THREATINT

Description

Movable Type contains a stored cross-site scripting vulnerability in Edit CategorySet of ContentType page. If crafted input is stored by an attacker with "ContentType Management" privilege, an arbitrary script may be executed on the web browser of the user who accesses Edit CategorySet of ContentType page.

PUBLISHED Reserved 2025-10-16 | Published 2025-10-23 | Updated 2025-10-23 | Assigner jpcert

MEDIUM: 4.8CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

MEDIUM: 4.6CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Problem types

Cross-site scripting (XSS)

Product status

8.4.0 to 8.4.3 (8.4 series)

affected

8.0.0 to 8.0.7 (8.0 series)

affected

7 r.5509 and earlier (7 series)

affected

8.4.0 to 8.4.3 (8.4 series)

affected

8.0.0 to 8.0.7 (8.0 series)

affected

7 r.5509 and earlier (7 series)

affected

2.10 and earlier (2 series)

affected

1.67 and earlier (1 series)

affected

2.10 and earlier (2 series)

affected

1.67 and earlier (1 series)

affected

8.7.0 (8 series)

affected

7 r.5509 (7 series)

affected

2.10 (2 series)

affected

1.67 (1 series)

affected

References

movabletype.org/news/2025/10/mt-880-released.html

www.sixapart.jp/movabletype/news/2025/10/22-1055.html

jvn.jp/en/jp/JVN24333679/

cve.org (CVE-2025-62499)

nvd.nist.gov (CVE-2025-62499)

Download JSON