RSS   Vulnerabilities for 'Plonepas'   RSS

2009-04-23
 
CVE-2009-0662

CWE-287
 

 
The PlonePAS product 3.x before 3.9 and 3.2.x before 3.2.2, a product for Plone, does not properly handle the login form, which allows remote authenticated users to acquire the identity of an arbitrary user via unspecified vectors.

 

 >>> Vendor: Plone 6 Products
Plone
Plone cms
Plonepas
Plone hotfix 20110720
Cmfeditions
Volto


Copyright 2024, cxsecurity.com

 

Back to Top