ГлавнаяУязвимости → CVE-2026-33088
9.8критическая

CVE-2026-33088

Описание

Movable Type provided by Six Apart Ltd. contains an SQL Injection vulnerability which may allow an attacker to execute an arbitrary SQL statement.

Затрагиваемое ПО
Sixapart Movable type
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://jvn.jp/en/jp/JVN66473735/https://movabletype.org/news/2026/04/mt-907-released.htmlhttps://www.sixapart.jp/movabletype/news/2026/04/08-1100.html