Description
Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.
Remediation
References
Related Vulnerabilities
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress SQL Injection (1.5.51)
WordPress 5.2.x Multiple Vulnerabilities (5.2 - 5.2.15)
TYPO3 Other Vulnerability (CVE-2006-5069)
WordPress Plugin Relevanssi-A Better Search 'Seach Query' Field HTML Injection (2.7.2)
Internet Information Services Other Vulnerability (CVE-2000-0413)