CVE-2026-25776_CVE-2026-25776

9.8 / 10

CRITICAL

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script.

Basic Information

ID CVE-2026-25776

Source jpcert

Published Apr 8, 2026 at 08:52

Modified Apr 8, 2026 at 13:22

Affected Product

Vendor Six Apart Ltd.

Product Movable Type

Version 9.1.0 and earlier

Affected Versions Six Apart Ltd. Movable Type 9.1.0 and earlier
Six Apart Ltd. Movable Type 9.0.6 and earlier
Six Apart Ltd. Movable Type 8.8.2 and earlier
Six Apart Ltd. Movable Type 8.0.9 and earlier
Six Apart Ltd. Movable Type Advanced 9.1.0 and earlier
Six Apart Ltd. Movable Type Advanced 9.0.6 and earlier
Six Apart Ltd. Movable Type Advanced 8.8.2 and earlier
Six Apart Ltd. Movable Type Advanced 8.0.9 and earlier
Six Apart Ltd. Movable Type Premium 9.1.0 and earlier
Six Apart Ltd. Movable Type Premium 9.0.6 and earlier
Six Apart Ltd. Movable Type Premium Advanced Edition 9.1.0 and earlier
Six Apart Ltd. Movable Type Premium Advanced Edition 9.0.6 and earlier
Six Apart Ltd. Movable Type Premium 2.14 and earlier
Six Apart Ltd. Movable Type Premium Advanced Edition 2.14 and earlier
Six Apart Ltd. Movable Type Premium (MT8-based) 2.14 and earlier
Six Apart Ltd. Movable Type 5.1 to 5.18
Six Apart Ltd. Movable Type 5.2
Six Apart Ltd. Movable Type 5.2.1 to 5.2.13
Six Apart Ltd. Movable Type 6.0
Six Apart Ltd. Movable Type 6.0.1 to 6.8.8
Six Apart Ltd. Movable Type 7 r.4207 to r.5510
Six Apart Ltd. Movable Type 8.4.0 to 8.4.4
Six Apart Ltd. Movable Type 1.0 to 1.68

CWE Classification

CWE-94

References

{
    "lastseen": "",
    "description": "Movable Type provided by Six Apart Ltd. contains a code injection vulnerability which may allow an attacker to execute arbitrary Perl script.",
    "published": "2026-04-08T08:52:15.469Z",
    "modified": "2026-04-08T13:22:04.832Z",
    "type": "cve",
    "title": "CVE-2026-25776",
    "source": "jpcert",
    "references": "https://movabletype.org/news/2026/04/mt-907-released.html\nhttps://www.sixapart.jp/movabletype/news/2026/04/08-1100.html\nhttps://jvn.jp/en/jp/JVN66473735/",
    "id": "CVE-2026-25776",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "Six Apart Ltd. Movable Type 9.1.0 and earlier\nSix Apart Ltd. Movable Type 9.0.6 and earlier\nSix Apart Ltd. Movable Type 8.8.2 and earlier\nSix Apart Ltd. Movable Type 8.0.9 and earlier\nSix Apart Ltd. Movable Type Advanced 9.1.0 and earlier\nSix Apart Ltd. Movable Type Advanced 9.0.6 and earlier\nSix Apart Ltd. Movable Type Advanced 8.8.2 and earlier\nSix Apart Ltd. Movable Type Advanced 8.0.9 and earlier\nSix Apart Ltd. Movable Type Premium 9.1.0 and earlier\nSix Apart Ltd. Movable Type Premium 9.0.6 and earlier\nSix Apart Ltd. Movable Type Premium Advanced Edition 9.1.0 and earlier\nSix Apart Ltd. Movable Type Premium Advanced Edition 9.0.6 and earlier\nSix Apart Ltd. Movable Type Premium 2.14 and earlier\nSix Apart Ltd. Movable Type Premium Advanced Edition 2.14 and earlier\nSix Apart Ltd. Movable Type Premium (MT8-based) 2.14 and earlier\nSix Apart Ltd. Movable Type 5.1 to 5.18\nSix Apart Ltd. Movable Type 5.2\nSix Apart Ltd. Movable Type 5.2.1 to 5.2.13\nSix Apart Ltd. Movable Type 6.0\nSix Apart Ltd. Movable Type 6.0.1 to 6.8.8\nSix Apart Ltd. Movable Type 7 r.4207 to r.5510\nSix Apart Ltd. Movable Type 8.4.0 to 8.4.4\nSix Apart Ltd. Movable Type 1.0 to 1.68",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Movable Type",
    "version": "9.1.0 and earlier",
    "vendor": "Six Apart Ltd.",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}