Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Plone CMS Permissions Privileges and Access Controls Vulnerability - CVE-2016-4043 - Vulnerability Database
Plone CMS

Plone CMS Permissions Privileges and Access Controls Vulnerability - CVE-2016-4043

Medium
Reference: CVE-2016-4043
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2016-4043
Title: Plone CMS Permissions Privileges and Access Controls Vulnerability
Overview:

Chameleon (five.pt) in Plone 5.0rc1 through 5.1a1 allows remote authenticated users to bypass Restricted Python by leveraging permissions to create or edit templates.