Full title: Movable Type Pro 5.13en Cross Site Scripting 
Category: web applications
Platform: php
Our researchers discovered a persistent XSS vulnerability, allowing an
attacker to inject arbitrary script code into the comment section of any
existing Mt5.13en installation.

# 0day.today @ http://0day.today/