Unrated severityNVD Advisory· Published Oct 21, 2008· Updated Jun 16, 2026
CVE-2008-4634
CVE-2008-4634
Description
Cross-site scripting (XSS) vulnerability in Movable Type 4 through 4.21 allows remote attackers to inject arbitrary web script or HTML via unknown vectors related to the administrative page, a different vulnerability than CVE-2008-4079.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:six_apart:movable_type:4:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:a:six_apart:movable_type:4:*:*:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4.20:*:*:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4.20:unknown:community_solution:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4.20:unknown:enterprise:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4.20:unknown:open_source:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4:unknown:community_solution:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4:unknown:enterprise:*:*:*:*:*
- cpe:2.3:a:six_apart:movable_type:4:unknown:open_source:*:*:*:*:*
- (no CPE)range: 4 - 4.21
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.