Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2013-7060 - Vulnerability Database
Plone CMS

Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability - CVE-2013-7060

Medium
Reference: CVE-2013-7060
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2013-7060
Title: Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Overview:

Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.