2 matches found
CVE-2017-5524
Plone 4.x through 4.3.11 and 5.x through 5.0.6 allow remote attackers to bypass a sandbox protection mechanism and obtain sensitive information by leveraging the Python string format method...
CVE-2017-5524
Plone 4.x (up to 4.3.11) and 5.x (up to 5.0.6) are affected by a sandbox-escape vulnerability that allows remote attackers to obtain sensitive information by abusing Python string formatting. Root cause: bypass of the Plone sandbox protection mechanism. Impact is information disclosure; no exploi...