CVE-2020-5528
Description
Cross-site scripting vulnerability in Movable Type series (Movable Type 7 r.4603 and earlier (Movable Type 7), Movable Type 6.5.2 and earlier (Movable Type 6.5), Movable Type Advanced 7 r.4603 and earlier (Movable Type Advanced 7), Movable Type Advanced 6.5.2 and earlier (Movable Type Advanced 6.5), Movable Type Premium 1.26 and earlier (Movable Type Premium), and Movable Type Premium Advanced 1.26 and earlier (Movable Type Premium Advanced)) allows remote attackers to inject arbitrary web script or HTML in the block editor and the rich text editor via a specially crafted URL.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Movable Type is vulnerable to stored XSS in the block editor and rich text editor via a crafted URL, allowing arbitrary script execution in a logged-in user's browser.
Vulnerability
Movable Type series contains a cross-site scripting vulnerability (CWE-79) in the block editor and the rich text editor. Affected versions include Movable Type 7 r.4603 and earlier, Movable Type 6.5.2 and earlier, Movable Type Advanced 7 r.4603 and earlier, Movable Type Advanced 6.5.2 and earlier, Movable Type Premium 1.26 and earlier, and Movable Type Premium Advanced 1.26 and earlier [1]. An attacker can inject arbitrary web script or HTML via a specially crafted URL [1].
Exploitation
An attacker does not require authentication but relies on user interaction: a logged-in user must visit a page containing the malicious URL while using the block editor or rich text editor. The attack vector is network-based, and the scope changes due to the injected script executing in the context of the editor session [1].
Impact
Successful exploitation allows arbitrary script execution in the logged-in user's web browser. This can lead to information disclosure (e.g., session tokens, page content) or further actions within the CMS context, with low impact on confidentiality and integrity [1].
Mitigation
Update to the latest version per the vendor: Movable Type 7 r.4605 (v7.2.0), Movable Type 6.5.3, or Movable Type 6.3.11, which contain the security fix [2]. For affected Premium editions, corresponding updated versions should also be applied. No workarounds are provided in the references.
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- Range: ≤ r.4603 in series 7; ≤ 6.5.2 in series 6.5
- Range: ≤ r.4603 (7 series); ≤ 6.5.2 (6.5 series)
- Range: ≤ 1.26
- Six Apart Ltd/Movable Type seriesv5Range: Movable Type 7 r.4603 and earlier (Movable Type 7), Movable Type 6.5.2 and earlier (Movable Type 6.5), Movable Type Advanced 7 r.4603 and earlier (Movable Type Advanced 7), Movable Type Advanced 6.5.2 and earlier (Movable Type Advanced 6.5), Movable Type Premium 1.26 and earlier (Movable Type Premium), and Movable Type Premium Advanced 1.26 and earlier (Movable Type Premium Advanced)
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- jvn.jp/en/jp/JVN94435544/index.htmlmitrex_refsource_MISC
- movabletype.org/news/2020/02/movable_type_r4605_v720_v653_and_v6311_released.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.