Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

pypi

plone

pypi

The Plone Content Management System

View on github.com · View on pypi.org

High Security Advisories for plone in pypi Clear Filters

High
over 1 year ago

Cross-Frame Scripting vulnerability has been found on Plone CMS GSA_kwCzR0hTQS01eGZ4LTU1eDQtajIyM84AA4jV

pypi Plone
High
over 2 years ago

Server-Side Request Forgery in Plone CMS GSA_kwCzR0hTQS00N3A1LXAzanctdzc4d84AAxtz

pypi Plone
High
over 3 years ago

Plone allows weak passwords GSA_kwCzR0hTQS1jdzU4LWdwZ3ctaHd4Ms4AAjYs

pypi Plone
High
over 3 years ago

Plone Privilege Escallation GSA_kwCzR0hTQS1jamczLXEyNGgtOXF3Zs4AAjY0

pypi Plone
High
over 3 years ago

Plone SQL Injection Vulnerability GSA_kwCzR0hTQS1oaG1mLTdyZ2ctZ2N3Nc4AAjY6

pypi Plone
High
over 3 years ago

Plone anonymous access to sub-objects in CMFEditions where KwAsAttributes classes were publishable GSA_kwCzR0hTQS1wd2dtLWp2cXYtNnY4cM4AAf3k

pypi Plone
High
over 3 years ago

Plone is vulnerable to email spoofing GSA_kwCzR0hTQS1mNWg5LTNocGYtOWo4bc4AAesP

pypi plone
High
over 3 years ago

Plone Improper Access Control Vulnerability GSA_kwCzR0hTQS1qanZ3LTNoOWotcDdqZs4AAesI

pypi plone
High
over 3 years ago

Plone Unrestricted Filed Manipulation vulnerability via content edit forms GSA_kwCzR0hTQS02ZmdmLXg3d2ctaHA4cs4AAesG

pypi plone
High
over 3 years ago

Plone Arbitrary File Read GSA_kwCzR0hTQS1wdmh2LXF3YzgtcjJwZ84AAeQx

pypi Plone
High
over 3 years ago

Plone Information Disclosure GSA_kwCzR0hTQS1jcTVnLTkyNG0tN2Z4aM4AAeQn

pypi Plone
High
over 3 years ago

Plone DoS via Crafted URL GSA_kwCzR0hTQS1neDZ3LWhjdzMtNXIzN84AAeQm

pypi plone
High
over 3 years ago

Plone denial of service via RSS Feed Request GSA_kwCzR0hTQS03OWhqLTQ3NGgtdjR4ds4AAeQj

pypi plone
High
over 3 years ago

Plone Code Injection vulnerability GSA_kwCzR0hTQS03aHhjLW13eDctNWhtY84AAePM

pypi Plone
High
over 3 years ago

Plone Code Injection vulnerability GSA_kwCzR0hTQS1jeHc3LTg1eG0tM3hyY84AAePN

pypi Plone
High
over 3 years ago

Plone is vulnerable to denial of service GSA_kwCzR0hTQS13cmYyLTJyY2gtY21yOc4AAePJ

pypi Plone
High
over 3 years ago

Plone denial of service via Caching Bypass GSA_kwCzR0hTQS05N3JqLXA3OTQtd3E2bc4AAdgt

pypi Plone
High
over 3 years ago

Plone unauthorized member addition vulnerability GSA_kwCzR0hTQS05ODRtLXJqMjgtOGM2eM4AAYda

pypi Plone
High
over 3 years ago

Plone Header Injection GSA_kwCzR0hTQS1mcTlyLThqcG0tMjIyMs4AAYdL

pypi Plone
High
over 3 years ago

Plone vulnerable to cross-site request forgery GSA_kwCzR0hTQS1wM3FtLTQ0Y2YtZjhxeM4AAYcH

pypi Plone
High
over 3 years ago

Plone Open Redirection vulnerability via next parameter GSA_kwCzR0hTQS01NnAzLXJycDQtMmo4Ms4AAWK2

pypi Plone
High
over 3 years ago

Plone Unauthorized Access Vulnerability GSA_kwCzR0hTQS1xYzU3LWgyZjctcDRoeM4AAR2e

pypi Plone
High
over 3 years ago

Plone Improper Session Management GSA_kwCzR0hTQS01OTNjLWozNDgtZjNnds2ziw

pypi Plone
High
over 3 years ago

Plone CMS Improper Session Management GSA_kwCzR0hTQS1tcTNxLWpqcGgtcnA1cM2zhA

pypi Plone
High
over 3 years ago

Plone Cross-site request forgery (CSRF) GSA_kwCzR0hTQS00ajN3LWc2MngtaHJjcM2vAg

pypi Plone
High
over 3 years ago

Plone allows anonymous users to reset any users password through the web via Password Reset Tool GSA_kwCzR0hTQS01aGNoLXY1cHEteDRxcM2KqQ

pypi Plone
High
over 4 years ago

Server-Side Request Forgery in Plone MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdjOWctNjdjcS1wN3Y0

pypi Plone
High
over 4 years ago

Improper Restriction of XML External Entity Reference in Plone MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJjOGMtODR3Mi1qMzhq

pypi plone.supermodel, plone.app.dexterity, plone.app.theming, plone.app.event, Plone
High
over 4 years ago

SSRF attacks via tracebacks in Plone MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3d2YtNW1qYy02eDc2

pypi plone.supermodel, plone.app.dexterity, plone.app.theming, plone.app.event, Plone
High
over 4 years ago

Improper Restriction of XML External Entity Reference in Plone MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdxNngtZzY4NS13NWYy

pypi plone.supermodel, plone.app.dexterity, plone.app.theming, plone.app.event, Plone
High
about 7 years ago

Plone and plone.app.users allow remote authenticated users to modify the properties of arbitrary accounts MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJxeDgtNTg5ai1nY3B4

pypi Plone, plone.app.users
High
about 7 years ago

Plone allows remote attackers to read hidden folder contents MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBycjUtcGZyOC1xOWYz

pypi Plone
High
about 7 years ago

Plone and Zope2 vulnerable to unauthorized access to restricted attributes MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTg3OXItN2Yzdy04amoz

pypi Plone, Zope2
High
about 7 years ago

High severity vulnerability that affects Plone and Zope2 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXA2aDktaHBjZy1jNmdt

pypi Zope2, Plone
High
about 7 years ago

HTTP header injection in Plone and Zope2 MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc3aHYtODc5Ni04Y2Nw

pypi Plone, Zope2
High
about 7 years ago

Plone and Zope2 do not reseed pseudo-random number generator MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTQ4dnYtMnBtcS05ZnZ2

pypi Plone, Zope2
High
about 7 years ago

Plone and Zope2 affected by Race Condition MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNxcHItN3JtZy03M3Y4

pypi Plone, Zope2
High
about 7 years ago

Plone Denial of Service vulnerability MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBjd20tOGpjMy1xeHZq

pypi Plone

Filter by Severity

Moderate 51 High 38 Critical 5 Low 2