Unrated severityNVD Advisory· Published Sep 15, 2008· Updated Jun 16, 2026
CVE-2008-4079
CVE-2008-4079
Description
Cross-site scripting (XSS) vulnerability in Movable Type (MT) 4.x through 4.20, and 3.36 and earlier; Movable Type Enterprise 4.x through 4.20, and 1.54 and earlier; and Movable Type Community Solution allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
10cpe:2.3:a:six_apart:movable_type:3.36:unknown:enterprise:*:*:*:*:*+ 7 more
- cpe:2.3:a:six_apart:movable_type:3.36:unknown:enterprise:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4:*:*:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4.20:*:*:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4.20:unknown:enterprise:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4:unknown:enterprise:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:*:unknown:enterprise:*:*:*:*:*range: <=1.54
- cpe:2.3:a:six_apart:movable_type:unknown:unknown:community_solution:*:*:*:*:*
- (no CPE)range: 3.36 and earlier, 4.x through 4.20
- Range: 1.54 and earlier, 4.x through 4.20
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.