Description
A privilege escalation issue in plone.app.contenttypes in Plone 4.3 through 5.2.1 allows users to PUT (overwrite) some content without needing write permission.
Remediation
References
Related Vulnerabilities
XOOPS Other Vulnerability (CVE-2005-0743)
WordPress Plugin Gutenberg & Elementor Templates Importer For Responsive Security Bypass (2.2.5)
Joomla Improper Authentication Vulnerability (CVE-2022-23795)
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-15132)
Oracle Database Server CVE-2008-2611 Vulnerability (CVE-2008-2611)