CVE-2025-25054 | Six Apart Movable Type Multi-Factor Authentication Plugin cross site scripting

A vulnerability was found in Six Apart Movable Type, Movable Type Advanced, Movable Type Premium, Movable Type Cloud Edition and Movable Type Premium Cloud Edition. It has been classified as problematic. Affected is an unknown function of the component Multi-Factor Authentication Plugin. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-25054. It is possible to launch the attack remotely. There is no exploit available.VulDB Recent EntriesRead More