Loading
Cross-site scripting (XSS) vulnerability in Six Apart (formerly Six Apart KK) Movable Type (MT) Pro 5.13 allows remote attackers to inject arbitrary web script or HTML via the comment section.
Use CWE-79, Sixapart vendor hub and Movable Type product page to widen CVE-2012-1503 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2022-38078, CVE-2021-20837 and CVE-2026-25776 for nearby disclosures in the same product family.