Movable Type before 5.2.6 does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via the comment_state parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Movable_type |
Sixapart |
* |
5.2.5 (including) |
References