Medium severity5.4NVD Advisory· Published Feb 4, 2026· Updated Apr 15, 2026
CVE-2026-22875
CVE-2026-22875
Description
Movable Type contains a stored cross-site scripting vulnerability in Export Sites. If crafted input is stored by an attacker, arbitrary script may be executed on a logged-in user's web browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life (EOL), are affected by the vulnerability as well.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 7 series and 8.4 series
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.