Description

Unspecified vulnerability in the Password Reset Tool before 0.4.1 on Plone 2.5 and 2.5.1 Release Candidate allows attackers to reset the passwords of other users, related to "an erroneous security declaration."

Remediation

References

CVE-2006-4247

Related Vulnerabilities

WordPress Plugin Vertical News Scroller Cross-Site Scripting (1.9)

WordPress Plugin iframe Cross-Site Scripting (3.0)

WordPress CVE-2008-6767 Vulnerability (CVE-2008-6767)

IBM RTC Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-4975)

Ruby Cryptographic Issues Vulnerability (CVE-2013-4363)

Severity

Medium

Classification

CVE-2006-4247

Tags

Missing Update Known Vulnerabilities