Loading
Cross-site scripting (XSS) vulnerability in Six Apart Movable Type Enterprise (MTE) 1.x before 1.56; Movable Type (MT) 3.x before 3.38; and Movable Type, Movable Type Open Source (MTOS), and Movable Type Enterprise 4.x before 4.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, possibly related to "application management."
Use CWE-79, Six Apart vendor hub and Movable Type product page to widen CVE-2008-5808 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2007-0231, CVE-2009-2481 and CVE-2011-2676 for nearby disclosures in the same product family.