Description Plone 3.3.0 through 3.3.6 allows remote attackers to inject headers into HTTP responses. Remediation References CVE-2015-7318 Related Vulnerabilities WordPress Plugin WP Like Button Security Bypass (1.6.0) WordPress Plugin RSVPmaker Excel Cross-Site Scripting (1.1) MySQL CVE-2022-21265 Vulnerability (CVE-2022-21265) WordPress Plugin Opal Estate Cross-Site Request Forgery (1.6.11) WordPress Plugin GD Rating System Unspecified Vulnerability (2.6) Severity High Classification CVE-2015-7318 CWE-20 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N Tags Missing Update Known Vulnerabilities