Description
plone.app.users in Plone 4.0 and 4.1 allows remote authenticated users to modify the properties of arbitrary accounts via unspecified vectors, as exploited in the wild in June 2011.
Remediation
References
Related Vulnerabilities
Next.js Uncontrolled Resource Consumption Vulnerability (CVE-2024-39693)
WordPress Plugin Keep Backup Daily Cross-Site Scripting (2.0.2)
Craft CMS CVE-2017-8383 Vulnerability (CVE-2017-8383)
Liferay Portal Other Vulnerability (CVE-2023-33947)
WordPress Plugin WP Page Builder Cross-Site Scripting (1.2.8)