Description
A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without needing write permission.
Remediation
References
Related Vulnerabilities
WordPress Plugin Ultimate Maps by Supsystic SQL Injection (1.1.12)
WebLogic CVE-2017-10178 Vulnerability (CVE-2017-10178)
WordPress 4.3.x Multiple Vulnerabilities (4.3 - 4.3.24)
Oracle JRE CVE-2012-5079 Vulnerability (CVE-2012-5079)
phpMyAdmin Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2016-5734)