Package: movabletype-opensource Severity: important Tags: security Hi, the following CVE (Common Vulnerabilities & Exposures) id was published for movabletype-opensource.
CVE-2008-4079[0]: | Cross-site scripting (XSS) vulnerability in Movable Type (MT) 4.x | through 4.20, and 3.36 and earlier; Movable Type Enterprise 4.x | through 4.20, and 1.54 and earlier; and Movable Type Community | Solution allows remote attackers to inject arbitrary web script or | HTML via unspecified vectors. If you fix the vulnerability please also make sure to include the CVE id in your changelog entry. Cheers Steffen For further information see: [0] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4079 http://security-tracker.debian.net/tracker/CVE-2008-4079 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
