Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi Plone Security Advisories

Loading...
High
GSA_kwCzR0hTQS00N3A1LXAzanctdzc4d84AAxtz
Server-Side Request Forgery in Plone CMS
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: 10 months ago
High
GSA_kwCzR0hTQS1oaG1mLTdyZ2ctZ2N3Nc4AAjY6
Plone SQL Injection Vulnerability
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Critical
GSA_kwCzR0hTQS13Nmc5LXhjY2MtMzQ3aM4AAjY7
Plone Unauthenticated Write Vulnerability
Ecosystems: pypi
Packages: plone.app.contenttypes, Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS04bWM0LTJ4cmMtZzU4Ms4AAjY8
Plone cross site scripting (XSS)
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
High
GSA_kwCzR0hTQS1jdzU4LWdwZ3ctaHd4Ms4AAjYs
Plone allows weak passwords
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS04Mmo5LXdmY2YtOXYyaM4AAjYw
Plone Open Redirect Vulnerability
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
High
GSA_kwCzR0hTQS1jeHc3LTg1eG0tM3hyY84AAePN
Plone Code Injection vulnerability
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
High
GSA_kwCzR0hTQS03aHhjLW13eDctNWhtY84AAePM
Plone Code Injection vulnerability
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS13cmYyLTJyY2gtY21yOc4AAePJ
Plone is vulnerable to denial of service
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS13cHJyLW1jNTQtYzYycc4AAeNO
Exposure of Sensitive Information in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS02aDh4LTczZngtcTJoOc4AAb6U
Chameleon in Plone allows Authentication Bypass
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
GSA_kwCzR0hTQS01NnAzLXJycDQtMmo4Ms4AAWK2
Plone Open Redirection vulnerability via next parameter
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 1 year ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM1cmctNDY2dy03N2gz
Cross-site scripting in Products.CMFCore, Products.PluggableAuthService, Plone
Ecosystems: pypi
Packages: Plone, Products.PluggableAuthService, Products.CMFCore
Source: GitHub Advisory Database
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdjOWctNjdjcS1wN3Y0
Server-Side Request Forgery in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtZzQtd3ZteC01MzMy
Server-Side Request Forgery in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 2 years ago
Critical
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtMnAtZmh3eC05Mjg1
Incorrect Permission Assignment for Critical Resource in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJtcHYtcmNwNi12OHdj
Cross-site scripting in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhtMmgtZjQ1Ni02ajg4
Cross-site scripting in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 2 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZqNjctdzNtNC1yZm1w
Cross-site scripting in Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJjOGMtODR3Mi1qMzhq
Improper Restriction of XML External Entity Reference in Plone
Ecosystems: pypi
Packages: plone.supermodel, plone.app.dexterity, plone.app.theming, plone.app.event, Plone
Source: GitHub Advisory Database
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3d2YtNW1qYy02eDc2
SSRF attacks via tracebacks in Plone
Ecosystems: pypi
Packages: plone.supermodel, plone.app.dexterity, plone.app.theming, plone.app.event, Plone
Source: GitHub Advisory Database
Published: over 2 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxNngtZzY4NS13NWYy
Improper Restriction of XML External Entity Reference in Plone
Ecosystems: pypi
Packages: plone.supermodel, plone.app.dexterity, plone.app.theming, plone.app.event, Plone
Source: GitHub Advisory Database
Published: over 2 years ago
Low
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWg2aHEtYzg5Ni13ODgy
Low severity vulnerability that affects Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJxeDgtNTg5ai1nY3B4
Moderate severity vulnerability that affects Plone and plone.app.users
Ecosystems: pypi
Packages: Plone, plone.app.users
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBycjUtcGZyOC1xOWYz
Moderate severity vulnerability that affects Plone
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3OXItN2Yzdy04amoz
Moderate severity vulnerability that affects Plone and Zope2
Ecosystems: pypi
Packages: Plone, Zope2
Source: GitHub Advisory Database
Published: over 5 years ago
High
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2aDktaHBjZy1jNmdt
High severity vulnerability that affects Plone and Zope2
Ecosystems: pypi
Packages: Zope2, Plone
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3aHYtODc5Ni04Y2Nw
HTTP header injection in Plone and Zope2
Ecosystems: pypi
Packages: Plone, Zope2
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ4dnYtMnBtcS05ZnZ2
Moderate severity vulnerability that affects Plone and Zope2
Ecosystems: pypi
Packages: Plone, Zope2
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNxcHItN3JtZy03M3Y4
Moderate severity vulnerability that affects Plone and Zope2
Ecosystems: pypi
Packages: Plone, Zope2
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBjd20tOGpjMy1xeHZq
Plone Denial of Service vulnerability
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 5 years ago
Moderate
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA1d3ItdnA4Zy1xNXA0
Plone Sandbox Escape
Ecosystems: pypi
Packages: Plone
Source: GitHub Advisory Database
Published: over 5 years ago
Filter by Package
tensorflow 433 tensorflow-cpu 387 tensorflow-gpu 384 django 77 apache-airflow 65 ansible 53 rdiffweb 42 Pillow 40 apache-superset 39 plone 36 matrix-synapse 34 Plone 32 opencv-python 30 opencv-contrib-python 30 vyper 23 Django 16 langchain 15 modoboa 14 notebook 13 pyftpdlib 13 cobbler 13 nova 13 pillow 13 onionshare-cli 12 mlflow 12 cryptography 12 calibreweb 11 twisted 11 keystone 11 urllib3 11 OctoPrint 10 salt 10 kiwitcms 9 opencv-contrib-python-headless 9 opencv-python-headless 9 pyload-ng 9 glance 9 waitress 9 ethyca-fides 9 wagtail 9 Flask-AppBuilder 8 Zope 8 aiohttp 8 numpy 8 aubio 8 pysaml2 7 matrix-sydent 7 pip 7 paddlepaddle 7 jupyter-server 7 python-keystoneclient 7 swift 7 vantage6 7 lief 6 mailman 6 ipython 6 web2py 6 inventree 6 graphite-web 6 python-gnupg 6 Zope2 6 lxml 6 apache-airflow-providers-apache-hive 6 sentry 5 bleach 5 gradio 5 zope 5 keylime 5 pyspark 5 tuf 5 requests 5 feedparser 5 neutron 5 pgadmin4 5 Products.CMFPlone 5 software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk 4 starlette 4 aws-iot-device-sdk-v2 4 awsiotsdk 4 PyPDF2 4 Pygments 4 qutebrowser 4 httpie 4 omero-web 4 Flask-Security-Too 4 gerapy 4 Jinja2 4 bottle 4 label-studio 4 werkzeug 4 reportlab 4 markdown2 4 FreeTAKServer-UI 4 scrapy 4 nltk 4 horizon 4 saleor 4 nvflare 4 datasette 4 copyparty 3 flask 3 mayan-edms 3 pyyaml 3 indy-node 3 cinder 3 ray 3 keyring 3 mitmproxy 3 rsa 3 paramiko 3 io.grpc:grpc-protobuf 3 grpc 3 grpcio 3 localstack 3 pretix 3 wger 3 bitlyshortener 3 barbican 3 plone.app.theming 3 plone.supermodel 3 indico 3 plone.app.dexterity 3 plone.app.event 3 ujson 3 sickrage 3 Products.PluggableAuthService 3 ansible-runner 3 pyarrow 3 fava 3 yt-dlp 3 oauthenticator 3 pywasm3 3 ckan 3 roundup 3 GitPython 3 quokka 3 poetry 3 Weblate 3 slixmpp 3 trytond 3 django-helpdesk 3 mistune 3 jupyterhub 3 torchserve 3 apache-airflow-providers-apache-spark 3 tripleo-heat-templates 3 Werkzeug 3 ecdsa 3 nautobot 3 asyncua 3 protobuf 3 moin 3 ubi-reader 2 distributed 2 certifi 2 Products.CMFCore 2 tripleo-ansible 2 redis 2 parlai 2 apache-airflow-providers-apache-drill 2 cabot 2 google/protobuf 2 github.com/protocolbuffers/protobuf 2 html5lib 2 Google.Protobuf 2 org.apache.spark:spark-core 2 pandasai 2 guarddog 2 typed-ast 2 openzeppelin-cairo-contracts 2 python-apt 2 pyxdg 2 keystonemiddleware 2 Twisted 2 untangle 2 superset 2 binwalk 2 petl 2 plone.restapi 2 aws-encryption-sdk-cli 2 py 2 ryu 2 aiohttp-session 2 djblets 2 apache-submarine 2 markdown-it-py 2 apache-iotdb 2 CairoSVG 2 mercurial 2 pyjwt 2 apache-airflow-providers-google 2 apache-airflow-providers-apache-sqoop 2 flower 2 RestrictedPython 2 djangorestframework 2 autobahn 2 org.apache.spark:spark-parent_2.12 2 python-cjson 2 piccolo 2 Red-DiscordBot 2 red-arrow 2 logilab-common 2 openstack-heat 2 websockets 2 ansible-core 2 django-sendfile2 2 python-ldap 2 safeurl-python 2 Radicale 2 pypdf 2 ctx 2 snowflake-connector-python 2 pretalx 2 scancodeio 2 plone.app.contenttypes 2 setuptools 2 pytorch-lightning 2 kallithea 2 buildbot 2 starkbank-ecdsa 2 keycloak-httpd-client-install 2 simiki 2 FreeTAKServer 2 archivy 2 scout-browser 2 django-anymail 2 proteus 2 tornado 2 uvicorn 2 aws-encryption-sdk 2 django-unicorn 2 pikepdf 2 shuup 2 dompurify 2 pycrypto 2 bikeshed 2 wasm3 2 django-cms 2 asyncssh 2 mindsdb 2 python-libnmap 2 apache-airflow-providers-odbc 2 mako 2 in-toto 2 webargs 2 httplib2 2 pyopenssl 2 tlslite-ng 2 sqlparse 2 AccessControl 2 sanic 2 openapi-python-client 2 rpyc 2 wagtail-2fa 2 loguru 2 SQLAlchemy 2 aioxmpp 2 streamlit 2 python-swiftclient 1 Products.PasswordResetTool 1 feedgen 1 parso 1 tortoise-orm 1 easybuild-framework 1 com.google.protobuf:protobuf-java 1 xalpha 1 apache-airflow-providers-smtp 1 IPython 1 phoenix-ws 1 archivebox 1 dtale 1 oauthlib 1 autogluon.multimodal 1 openssl-src 1 torch 1 sqlfluff 1 hnswlib 1 tkvideoplayer 1 binderhub 1 marcador 1 admesh 1 scalyr-agent-2 1 tlslite 1 onefuzz 1 coderedcms 1 rpc.py 1 SOAPpy 1 com.google.protobuf:protobuf-parent 1 Beaker 1 suds 1 django-grappelli 1 apache-airflow-providers-microsoft-mssql 1 drf-jwt 1 octoprint 1 zbar 1 django-mfa2 1 clickhouse-driver 1 sqla-yaml-fixtures 1 exotel 1 jefferson 1