Description

Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.

Remediation

References

CVE-2013-7060

Related Vulnerabilities

Chamilo Other Vulnerability (CVE-2023-34958)

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-3829)

MySQL CVE-2022-21319 Vulnerability (CVE-2022-21319)

WordPress Plugin AppPresser-Mobile App Framework Cross-Site Scripting (1.1.4)

WordPress Plugin Gantry 4 Framework Cross-Site Scripting (4.1.5)

Severity

Medium

Classification

CVE-2013-7060 CWE-200

Tags

Missing Update Known Vulnerabilities