Plone

Plone

103 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2006-4249

  • EPSS 0.59%
  • Published 07.12.2006 23:28:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in PlonePAS in Plone 2.5 and 2.5.1, when anonymous member registration is enabled, allows an attacker to "masquerade as a group."

6.4

CVE-2006-4247

  • EPSS 0.33%
  • Published 29.09.2006 19:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."

5

CVE-2006-1711

  • EPSS 11.11%
  • Published 11.04.2006 18:06:00
  • Last modified 03.04.2025 01:03:51

Plone 2.0.5, 2.1.2, and 2.5-beta1 does not restrict access to the (1) changeMemberPortrait, (2) deletePersonalPortrait, and (3) testCurrentPassword methods, which allows remote attackers to modify portraits.