![](https://www.movabletips.com/assets_c/2011/06/bug-thumb-75x75-280.jpg)
Continue reading "Invalid image file format" Error in Movable Type.
Under certain circumstances, a user who has "Create Entries" or "Manage Blog" pemissions may be able to read known files on the local file system.
This comes just days after Six Apart announced a security upgrade for all Movable Type versions. The most likely scenario is that someone reverse-engineered the security fixes to discover which vulnerabilies were patched and then exploited them.PBS.org was owned via a 0day we discovered in mt4 aka MoveableType 4