Information from Six Apart KK

Vulnerability ID:JVN#68295640
Title:Movable Type vulnerabile to cross-site scripting
Status:Vulnerable

This is a statement from the vendor itself with no modification by JPCERT/CC.