Количество 2
Количество 2
CVE-2013-4193
почти 12 лет назад
typeswidget.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce the immutable setting on unspecified content edit forms, which allows remote attackers to hide fields on the forms via a crafted URL.
CVSS2: 4.3
EPSS: Низкий
GHSA-6fgf-x7wg-hp8r
больше 3 лет назад
Plone Unrestricted Filed Manipulation vulnerability via content edit forms
CVSS3: 5.9
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2013-4193 typeswidget.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 does not properly enforce the immutable setting on unspecified content edit forms, which allows remote attackers to hide fields on the forms via a crafted URL. | CVSS2: 4.3 | 0% Низкий | почти 12 лет назад |
| GHSA-6fgf-x7wg-hp8r Plone Unrestricted Filed Manipulation vulnerability via content edit forms | CVSS3: 5.9 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу
20