Lucene search
HistoryMay 02, 2014 - 2:55 p.m.
CVE-2013-7060
cve-2013-7060
nvd
plone
security vulnerability
remote attackers
installation path
file object
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.3%
Products/CMFPlone/FactoryTool.py in Plone 3.3 through 4.3.2 allows remote attackers to obtain the installation path via vectors related to a file object for unspecified documentation which is initialized in class scope.
Affected configurations
Node
ploneploneMatch3.3
ORploneploneMatch3.3.1
ORploneploneMatch3.3.2
ORploneploneMatch3.3.3
ORploneploneMatch3.3.4
ORploneploneMatch3.3.5
ORploneploneMatch3.3.6
ORploneploneMatch4.0
ORploneploneMatch4.0.1
ORploneploneMatch4.0.2
ORploneploneMatch4.0.3
ORploneploneMatch4.0.4
ORploneploneMatch4.0.5
ORploneploneMatch4.0.7
ORploneploneMatch4.0.9
ORploneploneMatch4.1
ORploneploneMatch4.1.1
ORploneploneMatch4.1.2
ORploneploneMatch4.1.3
ORploneploneMatch4.1.4
ORploneploneMatch4.1.5
ORploneploneMatch4.1.6
ORploneploneMatch4.2
ORploneploneMatch4.2.1
ORploneploneMatch4.2.2
ORploneploneMatch4.2.3
ORploneploneMatch4.2.4
ORploneploneMatch4.2.5
ORploneploneMatch4.2.6
ORploneploneMatch4.2.7
ORploneploneMatch4.3
ORploneploneMatch4.3.1
ORploneploneMatch4.3.2
Related
github
github
Plone Filesystem path information leak
2022-05-17 04:41:01
nvd
nvd
CVE-2013-7060
2014-05-02 14:55:05
osv
osv
PYSEC-2014-67
2014-05-02 14:55:00
Plone Filesystem path information leak
2022-05-17 04:41:01
PYSEC-2014-65
2014-05-02 14:55:00
prion
prion
Design/Logic Flaw
2014-05-02 14:55:00
cvelist
cvelist
CVE-2013-7060
2014-05-02 14:00:00
nessus
nessus
RHEL 5 : conga (Unpatched Vulnerability)
2024-06-03 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
6.6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.3%
Related for CVE-2013-7060