Description

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."

Remediation

References

CVE-2006-4247

Related Vulnerabilities

WordPress Plugin Swipe Checkout for WP e-Commerce Multiple Cross-Site Scripting Vulnerabilities (3.1.0)

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2554)

WordPress CVE-2012-2399 Vulnerability (CVE-2012-2399)

WordPress Plugin WP All Backup Unspecified Vulnerability (1.5)

WordPress Plugin Elementor Website Builder Cross-Site Scripting (3.4.7)

Severity

Medium

Classification

CVE-2006-4247

Tags

Missing Update Known Vulnerabilities