Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Plone CMS Permissions Privileges and Access Controls Vulnerability - CVE-2011-4030 - Vulnerability Database
Plone CMS

Plone CMS Permissions Privileges and Access Controls Vulnerability - CVE-2011-4030

Critical
Reference: CVE-2011-4030
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-4030
Title: Plone CMS Permissions Privileges and Access Controls Vulnerability
Overview:

The CMFEditions component 2.x in Plone 4.0.x through 4.0.9 4.1 and 4.2 through 4.2a2 does not prevent the KwAsAttributes classes from being publishable which allows remote attackers to access sub-objects via unspecified vectors a different vulnerability than CVE-2011-3587.