关键信息 漏洞概述 漏洞编号: JVN#24333679 漏洞类型: 多个存储型跨站脚本漏洞 (Multiple stored cross-site scripting vulnerabilities) 受影响产品: Movable Type by Six Apart Ltd. 受影响产品版本 Movable Type Software Edition - Movable Type / Movable Type Advanced: - 8.4.0 to 8.4.3 (8.4 series) - 8.0.0 to 8.0.7 (8.0 series) - 7.x ≤ 5509 and earlier (7 series) - Movable Type Premium / Movable Type Premium (Advanced Edition): - 2.1.0 and earlier (2 series) - 1.6.0 and earlier (1 series) Movable Type Cloud Edition - Movable Type: - 8.7.0 (8 series) - 7.x ≤ 5509 (7 series) - Movable Type Premium: - 2.1.0 (2 series) - 1.6.7 (1 series) 漏洞描述 存储型跨站脚本漏洞在Edit ContentData页面 (CWE-79) - CVSS v3.0 AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N Base Score 4.6 - CVSS v3.0 AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N Base Score 4.8 - CVE-2025-54856 存储型跨站脚本漏洞在Edit CategorySet of ContentType页面 (CWE-79) - CVSS v3.0 AV:N/AC:L/AT:N/PR:H/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N Base Score 4.6 - CVSS v3.0 AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N Base Score 4.0 - CVE-2025-62499 影响 如果攻击者利用具有“ContentType Management”权限的用户输入,可能会导致以下影响: - 在访问Edit ContentData页面的用户的Web浏览器上执行任意脚本 (CVE-2025-54856) - 在访问Edit CategorySet of page的用户的Web浏览器上执行任意脚本 (CVE-2025-62499) 解决方案 更新软件: 根据开发者提供的信息应用适当的更新。 更新版本 Movable Type Software Edition - Movable Type / Movable Type Advanced: - 8.0.8 (8.0 series) - 8.4.4 (8.4 series) - 7.x ≥ 5510 (7 series) - Movable Type Premium / Movable Type Premium (Advanced Edition): - 2.1.1 (2 series) - 1.6.0 (1 series) Movable Type Cloud Edition - Movable Type: - 8.8.0 (8 series) - 7.x ≥ 5510 (7 series) - Movable Type Premium: - 2.1.1 (2 series) - 1.6.0 (1 series) 厂商状态 厂商: Six Apart Ltd. 状态: Vulnerable 最后更新: 2025/10/22 厂商备注: Six Apart Ltd. website 引用 JPCERT/CC Addendum Vulnerability Analysis by JPCERT/CC 其他信息 CVE: CVE-2025-54856, CVE-2025-62499 JVN iFeed: JVNDB-2025-000090