Description
Unspecified vulnerability in (1) Zope 2.12.x before 2.12.19 and 2.13.x before 2.13.8, as used in Plone 4.x and other products, and (2) PloneHotfix20110720 for Plone 3.x allows attackers to gain privileges via unspecified vectors, related to a "highly serious vulnerability." NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-0720.
Remediation
References
Related Vulnerabilities
WordPress Plugin KJM Admin Notices Cross-Site Scripting (2.0.1)
LimeSurvey Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-7556)
WordPress Plugin WP Portfolio Gallery Cross-Site Scripting (1.0.0)
Ampache Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-47828)