Description

Unspecified vulnerability in Plone 2.5 through 4.0, as used in Conga, luci, and possibly other products, allows remote attackers to obtain administrative access, read or create arbitrary content, and change the site skin via unknown vectors.

Remediation

References

CVE-2011-0720

Related Vulnerabilities

Oracle JRE CVE-2013-5810 Vulnerability (CVE-2013-5810)

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress PHP Code Injection (3.6.10)

WordPress Plugin iubenda-All-in-one Compliance for GDPR/CCPA Cookie Consent + more Privilege Escalation (3.3.2)

WordPress Plugin Advanced Page Manager Cross-Site Scripting (1.4.1)

Opencart Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-21517)

Severity

High

Classification

CVE-2011-0720

Tags

Missing Update Known Vulnerabilities