Candidate: CVE-2014-5313
PublicDate: 2014-09-10 10:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5313
 http://jvndb.jvn.jp/jvndb/JVNDB-2014-000104
 http://jvn.jp/en/jp/JVN73357573/index.html
 http://jvn.jp/en/jp/JVN73357573/370331/index.html
Description:
 Cross-site scripting (XSS) vulnerability in the management page in Six
 Apart Movable Type before 5.2 allows remote authenticated users to inject
 arbitrary web script or HTML via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_movabletype-opensource:
upstream_movabletype-opensource: released (5.2)
lucid_movabletype-opensource: ignored (reached end-of-life)
precise_movabletype-opensource: ignored (reached end-of-life)
precise/esm_movabletype-opensource: DNE (precise was needs-triage)
trusty_movabletype-opensource: not-affected (5.2.9+dfsg-1)
trusty/esm_movabletype-opensource: DNE (trusty was not-affected [5.2.9+dfsg-1])
utopic_movabletype-opensource: not-affected
vivid_movabletype-opensource: DNE
vivid/stable-phone-overlay_movabletype-opensource: DNE
vivid/ubuntu-core_movabletype-opensource: DNE
wily_movabletype-opensource: DNE
xenial_movabletype-opensource: DNE
yakkety_movabletype-opensource: DNE
zesty_movabletype-opensource: DNE
devel_movabletype-opensource: DNE