{“lastseen”:””,”description”:”A non-administrative user can upload malicious files. When an administrator or the product accesses that file, an arbitrary script may be executed on the administrator’s browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life (EOL), are affected by the vulnerability as well.”,”published”:”2026-02-04T07:03:37.889Z”,”modified”:”2026-02-04T07:03:37.889Z”,”type”:”cve”,”title”:”CVE-2026-23704″,”source”:”jpcert”,”references”:”https:\/\/movabletype.org\/news\/2026\/02\/mt-906-released.html\\nhttps:\/\/www.sixapart.jp\/movabletype\/news\/2026\/02\/04-1100.html\\nhttps:\/\/jvn.jp\/en\/jp\/JVN45405689\/”,”id”:”CVE-2026-23704″,”bulletinFamily”:””,”cwe”:[“CWE-434″],”cvelist”:null,”sourceData”:”Six Apart Ltd. Movable Type (Software Edition) 9.0.4 to 9.0.5 (9.0 series)\\nSix Apart Ltd. Movable Type (Software Edition) 8.8.0 to 8.8.1 (8.8 series)\\nSix Apart Ltd. Movable Type (Software Edition) 8.0.2 to 8.0.8 (8.0 series)\\nSix Apart Ltd. Movable Type Advanced (Software Edition) 9.0.4 to 9.0.5 (9.0 series)\\nSix Apart Ltd. Movable Type Advanced (Software Edition) 8.8.0 to 8.8.1 (8.8 series)\\nSix Apart Ltd. Movable Type Advanced (Software Edition) 8.0.2 to 8.0.8 (8.0 series)\\nSix Apart Ltd. Movable Type Premium (Software Edition) 9.0.4 (MTP 9.0 series)\\nSix Apart Ltd. Movable Type Premium (Software Edition) 2.13 and earlier (MTP 2 series)\\nSix Apart Ltd. Movable Type Premium (Advanced Edition) (Software Edition) 9.0.4 (MTP 9.0 series)\\nSix Apart Ltd. Movable Type Premium (Advanced Edition) (Software Edition) 2.13 and earlier (MTP 2 series)\\nSix Apart Ltd. Movable Type (Cloud Edition) 9.0.5 (9 series)\\nSix Apart Ltd. Movable Type (Cloud Edition) 8.8.1 (8 series)\\nSix Apart Ltd. Movable Type Premium (Cloud Edition) 9.0.5 (9 series)\\nSix Apart Ltd. Movable Type Premium (Cloud Edition) 2.12 (MTP 2 series)”,”sourceHref”:””,”cvss”:{“score”:6.5,”severity”:”MEDIUM”,”vector”:”CVSS:3.0\/AV:N\/AC:L\/PR:L\/UI:R\/S:C\/C:L\/I:L\/A:L”,”version”:”3.0″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Movable Type (Software Edition)”,”version”:”9.0.4 to 9.0.5 (9.0 series)”,”vendor”:”Six Apart Ltd.”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”A non-administrative user can upload malicious files. When an administrator or the product accesses that file, an arbitrary script may be executed on the administrator’s…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,26,12,21,13,7,11,5],"class_list":["post-38963","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-65","tag-exploit","tag-medium","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n