Description

Multiple open redirect vulnerabilities in (1) marmoset_patch.py, (2) publish.py, and (3) principiaredirect.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

Remediation

References

CVE-2013-4195

Related Vulnerabilities

WordPress Plugin Media Tagz Gallery Multiple Unspecified Vulnerabilities (1.0)

Apache HTTP Server Resource Management Errors Vulnerability (CVE-2016-1546)

WordPress Plugin Social Share Buttons-Social Pug Cross-Site Scripting (1.2.5)

Magento Improper Access Control Vulnerability (CVE-2021-21020)

Joomla CVE-2018-15881 Vulnerability (CVE-2018-15881)

Severity

Medium

Classification

CVE-2013-4195 CWE-20

Tags

Missing Update Known Vulnerabilities