Description
Chameleon (five.pt) in Plone 5.0rc1 through 5.1a1 allows remote authenticated users to bypass Restricted Python by leveraging permissions to create or edit templates.
Remediation
References
Related Vulnerabilities
Drupal Core 7.x SQL Injection (7.0 - 7.31)
WordPress Plugin Responsive Owl Carousel for Elementor Local File Inclusion (1.2.0)
WordPress Plugin Admin Log Unspecified Vulnerability (1.42)
MediaWiki Other Vulnerability (CVE-2021-36126)
PHP Use of Externally-Controlled Format String Vulnerability (CVE-2009-0754)