Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Plone CMS Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2007-5741 - Vulnerability Database
Plone CMS

Plone CMS Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2007-5741

High
Reference: CVE-2007-5741
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2007-5741
Title: Plone CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

Plone 2.5 through 2.5.4 and 3.0 through 3.0.2 allows remote attackers to execute arbitrary Python code via network data containing pickled objects for the (1) statusmessages or (2) linkintegrity module which the module unpickles and executes.