Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

Plone CMS

Plone is a free and open source content management system built on top of the Zope application server.

Official Site:

https://plone.org/

Severity Summary:

Critical: 5 High: 20 Medium: 76 Low: 3
Reference
Title
Severity
CVE-2017-5524
Plone CMS Use of Externally-Controlled Format String Vulnerability
Medium
CVE-2016-7140
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-6661
Plone CMS Cryptographic Issues Vulnerability
Medium
CVE-2012-5503
Plone CMS Vulnerability
Medium
CVE-2012-5504
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-5505
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2012-5506
Plone CMS Resource Management Errors Vulnerability
Medium
CVE-2012-5507
Plone CMS Concurrent Execution using Shared Resource with Improper Synchronization (Race Condition) Vulnerability
Medium
CVE-2012-5500
Plone CMS Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2012-5508
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-7147
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-5499
Plone CMS Resource Management Errors Vulnerability
Medium
CVE-2015-7315
Plone CMS Improper Access Control Vulnerability
Medium
CVE-2016-4042
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2016-4043
Plone CMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2016-7135
Plone CMS Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2016-7136
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-7137
Plone CMS URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
CVE-2016-7138
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2016-7139
Plone CMS Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-5501
Plone CMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-5498
Plone CMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2013-4195
Plone CMS Improper Input Validation Vulnerability
Medium
CVE-2012-5497
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2013-4197
Plone CMS Improper Input Validation Vulnerability
Medium
CVE-2013-4198
Plone CMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2013-7060
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2013-7061
Plone CMS Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-5485
Plone CMS Improper Control of Generation of Code (Code Injection) Vulnerability
Medium
CVE-2012-5486
Plone CMS Other Vulnerability
Medium