Описание
Plone and plone.app.users allow remote authenticated users to modify the properties of arbitrary accounts
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-1950
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67695
- https://github.com/advisories/GHSA-2qx8-589j-gcpx
- https://github.com/pypa/advisory-database/tree/main/vulns/plone/PYSEC-2011-16.yaml
- http://plone.org/products/plone/security/advisories/CVE-2011-1950
Пакеты
plone.app.users
>= 1.0a1, < 1.0.5
1.0.5
plone.app.users
>= 1.1b1, < 1.1.1
1.1.1
Plone
>= 4.0.1, < 4.0.6
4.0.6
Plone
>= 4.1.0, < 4.1.1
4.1.1
Связанные уязвимости
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users ...