cbcvebase.

Plone vulnerabilities

107 known vulnerabilities affecting plone/plone.

Total CVEs
107
CISA KEV
0
Public exploits
4
Exploited in wild
2
Severity breakdown
CRITICAL5HIGH23MEDIUM76LOW3

Vulnerabilities

Page 1 of 6
CVE-2011-3587P1CRITICALCVSS 9.3ExploitedPoCv4.0v4.0.1+12 more2011-10-10
CVE-2011-3587 [CRITICAL] CVE-2011-3587: Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9, 4.1, and 4.2 through 4.2a2, allows remote attackers to execute arbitrary commands via vectors related to the p_ class in OFS/misc_.py and the use of Python modules.
nvd
CVE-2011-1950P2MEDIUMCVSS 5.5Exploitedv4.0v4.12011-06-06
CVE-2011-1950 [MEDIUM] CWE-264 CVE-2011-1950: plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of a plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
ghsanvdosv
CVE-2015-7293P3HIGHCVSS 8.8PoCv3.3v3.3.1+44 more2017-09-25
CVE-2015-7293 [HIGH] CWE-352 CVE-2015-7293: Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and ea Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and earlier, and Plone before 5.x.
ghsanvdosv
CVE-2020-35190P2CRITICALCVSS 9.8≥ 4.0.0-alpine, < 4.3.18-alpine2020-12-17
CVE-2020-35190 [CRITICAL] CWE-306 CVE-2020-35190: The official plone Docker images before version of 4.3.18-alpine (Alpine specific) contain a blank p The official plone Docker images before version of 4.3.18-alpine (Alpine specific) contain a blank password for a root user. System using the plone docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.
nvd
CVE-2021-32633P3HIGHCVSS 8.8≤ 4.3.20≥ 5.0, ≤ 5.2.42021-05-21
CVE-2021-32633 [HIGH] CWE-22 CVE-2021-32633: Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, users can acce Zope is an open-source web application server. In Zope versions prior to 4.6 and 5.2, users can access untrusted modules indirectly through Python modules that are available for direct use. By default, only users with the Manager role can add or edit Zope Page Templates through the web, but sites that allow untrusted users to add/edit Zope Page Templat
nvd
CVE-2006-1711P3MEDIUMCVSS 5.0PoCv2.0.5v2.1.2+1 more2006-04-11
CVE-2006-1711 [MEDIUM] CVE-2006-1711: Plone 2.0.5, 2.1.2, and 2.5-beta1 does not restrict access to the (1) changeMemberPortrait, (2) dele Plone 2.0.5, 2.1.2, and 2.5-beta1 does not restrict access to the (1) changeMemberPortrait, (2) deletePersonalPortrait, and (3) testCurrentPassword methods, which allows remote attackers to modify portraits.
ghsanvdosv
CVE-2021-33509P3CRITICALCVSS 9.9≤ 5.2.42021-05-21
CVE-2021-33509 [CRITICAL] CWE-732 CVE-2021-33509: Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted keyword arg Plone through 5.2.4 allows remote authenticated managers to perform disk I/O via crafted keyword arguments to the ReStructuredText transform in a Python script.
ghsanvdosv
CVE-2013-4200P4MEDIUMCVSS 5.8PoCv2.1v2.1.1+44 more2014-01-21
CVE-2013-4200 [MEDIUM] CWE-264 CVE-2013-4200: The isURLInPortal method in the URLTool class in in_portal.py in Plone 2.1 through 4.1, 4.2.x throug The isURLInPortal method in the URLTool class in in_portal.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 treats URLs starting with a space as a relative URL, which allows remote attackers to bypass the allow_external_login_sites filtering property, redirect users to arbitrary web sites, and conduct phishing attacks via a sp
ghsanvdosv
CVE-2020-7939P3HIGHCVSS 8.8≥ 4.0.0, ≤ 5.2.12020-01-23
CVE-2020-7939 [HIGH] CWE-89 CVE-2020-7939: SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform un SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. (This is a problem in Zope.)
ghsanvdosv
CVE-2024-23756P3HIGHCVSS 7.5v5.2.132024-02-08
CVE-2024-23756 [HIGH] CVE-2024-23756: The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221), allo The HTTP PUT and DELETE methods are enabled in the Plone official Docker version 5.2.13 (5221), allowing unauthenticated attackers to execute dangerous actions such as uploading files to the server or deleting them.
nvd
CVE-2021-33926P3HIGHCVSS 8.8v4.3v4.3.1+47 more2023-02-17
CVE-2021-33926 [HIGH] CWE-918 CVE-2021-33926: An issue in Plone CMS v. 5.2.4, 5.2.3, 5.2.2, 5.2.1, 5.2.0, 5.1rc2, 5.1rc1, 5.1b4, 5.1b3, 5.1b2, 5.1 An issue in Plone CMS v. 5.2.4, 5.2.3, 5.2.2, 5.2.1, 5.2.0, 5.1rc2, 5.1rc1, 5.1b4, 5.1b3, 5.1b2, 5.1a2, 5.1a1, 5.1.7, 5.1.6, 5.1.5, 5.1.4, 5.1.2, 5.1.1 5.1, 5.0rc3, 5.0rc2, 5.0rc1, 5.0.9, 5.0.8, 5.0.7, 5.0.6, 5.0.5, 5.0.4, 5.0.3, 5.0.2, 5.0.10, 5.0.1, 5.0, 4.3.9, 4.3.8, 4.3.7, 4.3.6, 4.3.5, 4.3.4, 4.3.3, 4.3.20, 4 allows attacker to access sensitive i
ghsanvdosv
CVE-2012-5487P3HIGHCVSS 8.5≤ 4.2.2v1.0+64 more2014-09-30
CVE-2012-5487 [HIGH] CWE-264 CVE-2012-5487: The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before beta 1 allow The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with certain privileges to bypass the Python sandbox restriction and execute arbitrary Python code via vectors related to importing.
ghsanvdosv
CVE-2020-7941P3CRITICALCVSS 9.8≥ 4.3.0, ≤ 5.2.12020-01-23
CVE-2020-7941 [CRITICAL] CVE-2020-7941: A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PU A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without needing write permission.
ghsanvdosv
CVE-2024-22889P3HIGHCVSS 7.5v6.0.92024-03-06
CVE-2024-22889 [HIGH] CWE-276 CVE-2024-22889: Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all file Due to incorrect access control in Plone version v6.0.9, remote attackers can view and list all files hosted on the website via sending a crafted request.
ghsanvdosv
CVE-2012-5493P3HIGHCVSS 8.5≤ 4.2.2v1.0+64 more2014-09-30
CVE-2012-5493 [HIGH] CWE-94 CVE-2012-5493: gtbn.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with certain p gtbn.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with certain permissions to bypass the Python sandbox and execute arbitrary Python code via unspecified vectors.
ghsanvdosv
CVE-2020-28735P3HIGHCVSS 8.8fixed in 5.2.32020-12-30
CVE-2020-28735 [HIGH] CWE-918 CVE-2020-28735: Plone before 5.2.3 allows SSRF attacks via the tracebacks feature (only available to the Manager rol Plone before 5.2.3 allows SSRF attacks via the tracebacks feature (only available to the Manager role).
ghsanvdosv
CVE-2011-0720P3HIGHCVSS 7.5v2.5v2.5.1+30 more2011-02-03
CVE-2011-0720 [HIGH] CVE-2011-0720: Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other produ Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain administrative access, read or create arbitrary content, and change the site skin via unknown vectors.
ghsanvdosv
CVE-2020-7938P3HIGHCVSS 8.8≥ 5.2.0, ≤ 5.2.12020-01-23
CVE-2020-7938 [HIGH] CVE-2020-7938: plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate t plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
ghsanvdosv
CVE-2020-28734P3HIGHCVSS 8.8fixed in 5.2.32020-12-30
CVE-2020-28734 [HIGH] CWE-611 CVE-2020-28734: Plone before 5.2.3 allows XXE attacks via a feature that is explicitly only available to the Manager Plone before 5.2.3 allows XXE attacks via a feature that is explicitly only available to the Manager role.
ghsanvdosv
CVE-2020-28736P3HIGHCVSS 8.8fixed in 5.2.32020-12-30
CVE-2020-28736 [HIGH] CWE-611 CVE-2020-28736: Plone before 5.2.3 allows XXE attacks via a feature that is protected by an unapplied permission of Plone before 5.2.3 allows XXE attacks via a feature that is protected by an unapplied permission of plone.schemaeditor.ManageSchemata (therefore, only available to the Manager role).
ghsanvdosv
Plone vulnerabilities | cvebase