CVE-2012-5487

2014-09-30T10:55:05
ID CVE-2012-5487
Type cve
Reporter NVD
Modified 2014-10-01T10:28:43

Description

The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users with certain privileges to bypass the Python sandbox restriction and execute arbitrary Python code via vectors related to importing.