Description

Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain administrative access, read or create arbitrary content, and change the site skin via unknown vectors.

Remediation

References

CVE-2011-0720

Related Vulnerabilities

WebLogic CVE-2018-3213 Vulnerability (CVE-2018-3213)

Moodle CVE-2019-3851 Vulnerability (CVE-2019-3851)

WordPress Plugin Shibboleth Cross-Site Scripting (1.7)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2011-3268)

Moodle CVE-2022-40314 Vulnerability (CVE-2022-40314)

Severity

High

Classification

CVE-2011-0720

Tags

Missing Update Known Vulnerabilities